We’re in an exciting time for users who want to take back control from major platforms like Twitter and Facebook. However, this new environment comes with challenges and risks for user privacy, so we need to get it right and make sure networks like the Fediverse and Bluesky are mindful of past...
From what I read, it looks like they were hosting off-site, but had an unencrypted backup of the database locally at the time of the raid.
So the reaction we should be having is to be careful whose instance you sign up for?