Researchers have discovered a critical flaw in the backbone of HTTPS-protected traffic, and it is an exploit that has potentially existed for decades. The flaw exists in approximately 36 percent of websites that use HTTPS, and miscreants are able to intercept and modify data passing between a vulnerable browser and a susceptible site. At the moment, OS X and iOS Safari and Chrome are vulnerable to the attack, as are virtually all Android devices ever produced, plus all browsers on Linux.
