The FCC would not send this unless they felt Twilio specifically had an inadequate method of preventing abuse on their platform. They started with smaller providers that likely had worse protection. I suspect the FCC currently considers Twilio the most vulnerable service at this present moment.

It's also very likely they had previous communications between the FCC and Twilio, and possible that, like many tech companies, Twilio refused to delete a customer without an official order.