People look at me like I'm crazy when I suggest that Notion's use of the Somalia TLD is a security concern that should give pause to anyone looking to store confidential data. This includes Notion's own recruiters.
I still think that's probably the biggest mistake that company has made. It seems baked in to their architecture now. But I think any company using a vanity domain in this manner is acting irresponsibly.
FWIW I don't think the "colonialism" argument makes sense for this or other vanity domains. But the use of vanity ccTLDs is still a huge, underappreciated security concern. Companies willingly expose themselves to the risk of their domain being hijacked (or "legally" taken away) with zero recourse - or worse, putting their government in a situation where they have to choose between trying to intervene or having a bunch of their citizens' data compromised. It betrays a security naivete, oblivious to what state-sponsored APTs out there are capable of once enough is at stake.
I still think that's probably the biggest mistake that company has made. It seems baked in to their architecture now. But I think any company using a vanity domain in this manner is acting irresponsibly.
FWIW I don't think the "colonialism" argument makes sense for this or other vanity domains. But the use of vanity ccTLDs is still a huge, underappreciated security concern. Companies willingly expose themselves to the risk of their domain being hijacked (or "legally" taken away) with zero recourse - or worse, putting their government in a situation where they have to choose between trying to intervene or having a bunch of their citizens' data compromised. It betrays a security naivete, oblivious to what state-sponsored APTs out there are capable of once enough is at stake.