The Justice Department announced criminal charges against two Twitter employees for acting as foreign agents. The two men used their ability to access user data to provide the Saudi rulers with private information on more than 6,000 Twitter users. Cybersecurity experts fear widespread lax tech company employee access to sensitive data. The notion of least access is one enshrined in a host of cybersecurity frameworks going back to the beginning of the field. Twitter says it enhanced its controls and permissions in 2015 to restrict user data access to only those whose duties required it.”]