I agree with this, but I think the question is whether the intermediaries have interest/capability to collect data and try to compromise the security. Which is why I generally trust telco and ISPs, because I personally believe I am not a person of interest, i.e. these companies are not being asked by the govt to track me. That makes my information part of a large data stream, and thus is less likely to be subjected to a directed attack.