Blah blah blah...so this is more of a general purpose gripe/whine/bitch/kvetch than it is a sincere security concern. I see.
Then you probably should ask support to provide you further explanation.
The biggest part of that is your own responsibility - take responsibility for your own permissions; DH has given you the tools to tighten them so that only you (and scripts running as you) can read them, if you can't be bothered to do that, why should DH?
That's always a good idea when dealing with someone you believe is being less than candid with you. However, for the record, if you have followed this issue at all in these forums or the web in general (it has been discussed also on other venues), you would realize that "magically changing" is not the way this issue was addressed; DH has, without much fanfare but also without keeping it a secret, changed the default access shared machines afforded to their users.
Believe what you want, but realize how disingenuous you sound when you initiate a thread about a perceived "security issue", that ultimately turns out to be more about your personal dissatisfaction.
I'm all for investigating security issues, and will actively participate in researching them, but if at the end of the day, you just want to whine and/or make unfounded allegations of duplicity - I have better things to do than to exchange posts with you.