I think it's great that Twitter may finally be adding end-to-end encryption for DMs, at least according to strings in leaked code for their Android app. But I have questions: First, who's going to build it, given the state of staff and who's going to ensure it's done right, given the lack of security staff? Because it would be very bad to claim end-to-end encryption only to find out that it's not actually encrypted when there's a massive data breach. #infosec #privacy