data classification

The externally facing communications systems used by newsrooms and freelancers get the bulk of the attention, justifiably. 

The internal systems teams use to communicate are often defaulted to, and at best they've got a data retention policy that eases the concerns regarding subpoenas and ignores surreptitious interception. I'm always up to rant about hygiene being ten times more important than a quick deletion policy, but I think we'll save that for a day when folks can see the fear in my eyes for themselves.
 

I recently managed to christen our car with by rear ending another car at exceptionally low speeds (3mph), in the process I finally took a look at the data our dash-cam contained. I quickly found the footage of the accident, complete with the audio of me talking about the burger place that I was distracted by (and now will never get to try). What I found on the dash cam was a trove of data far beyond what you'd expect.

https://www.bleepingcomputer.com/news/security/signal-downplays-encryption-key-flaw-fixes-it-after-x-drama/

Bleeping Computer once again doing the absolute best job of compiling information about an issue.

There has been a long standing argument about Signal Desktop in my circles. Ranging from vague "don't use it" to a more nuanced "the desktop OS is weaker than the mobile device and therefore using it for secure comms is bad practice".