Is this every SSL encrypted site or some? https://github.com/blog/1818-securit...-vulnerability explains a newly discovered vulnerability in OpenSSL, so some site may have https down to fix vulnerabilities . Also there is a vulnerability with any site that uses Facebook Oauth tokens, which Twitter does. Facebook know but will not fix it. It has been known for a while but has been brought to the attention of many recently since the Heartbleed...