Out of curiosity, would you mind elaborating on how and why would the server be able to break their E2EE? Especially, where do you see the danger here? As in, what are the red flags for you that their service might not be secure and/or private? I am interested in learning more about how to ascertain this from a quick look at the service from your point of view as a security researcher.