That above link is a gift article, so people can get around the paywall.

It's worth noting that two factor authorization isn't working properly on Twitter due to Musk. So, that's going to open up a lot more people to exposure.
https://www.wired.com/story/twitter-two-factor-sms-problems/

This issue predates Musk taking over Twitter, but he's only made the situation worse since taking over.

Which is why he's under investigation.

"The US Federal Trade Commission is deepening an investigation it opened this fall into Twitter Inc.’s privacy and data security practices in the wake of the company’s takeover by billionaire Elon Musk, according to people familiar with the matter."
https://www.bloomberg.com/news/articles/2022-12-20/musk-s-twitter-draws-deeper-ftc-scrutiny-over-rising-privacy-security-concerns

That's not to be confused with the FTC investigation prompted by this data leak.

Musk is under an additional, entirely separate FTC investigation going on at the same time as this one.

What we learned when Twitter whistleblower Mudge testified to Congress
https://techcrunch.com/2022/09/13/twitter-whistleblower-mudge-congress/

What is Musk focusing on over at Twitter, you may wonder:

"Twitter Inc's head of trust and safety told Reuters the company manually reviewed "any and all accounts" that violated its new privacy policy by posting links to a Twitter account called ElonJet that tracked Elon Musk's private jet using information in the public domain"

Yep. Manually going through and deciding who to ban and who to not ban for sharing the @elonjet Twitter account.

This was after firing almost everyone, so assume that's all they're doing these days: manually reviewing tweets about Musk.
https://www.reuters.com/technology/twitter-manually-reviewed-all-accounts-that-posted-links-elonjet-exec-2022-12-16/