What Were You Thinking, Patreon?

So, a couple of days ago (September 8th, to be exact) Patreon laid off their entire five-person security team. WTF? The linked article goes on to say,

The firm, which is still doing business in Russia, simply calls it “a strategic shift” (which seems to be corporate mumbo-jumbo for “cheaper outsourcing”). But infosec experts call it a “nightmare” caused by an “untrustworthy” company that’s “just put a massive target on its back.”

You can see links to more articles below in the resources.

The minimum reasonable response to this would be to change your password. Done that. It's not unreasonable to delete your account. I'm still supporting a few sites, so I'll leave my account in place until I see what's going to happen. And laying in a supply of popcorn.

Resources

• @ Patreon confirms it 'parted ways' with its 'entire' cyber security team | IT PRO
• Patreon confirms security team layoffs | TechCrunch
• Patreon Fires its Security Team — and the Internet Freaks Out
• Patreon Just Let Its Entire Security Team Go [Updated]
• Should You Delete Your Patreon Account After They Laid Off Their Entire Security Team? - Dhole Moments -> excellent discussion of risks and alternatives -> changed password. Probably ought to delete account too, but I'm using it.