Some months ago I found out some of the "big players" holding many of your personal data are unable to protect you and your data from being stolen, manipulated or abused. But why? The short and simple but scary explanation: They're not using this "new" thing called "certificate pinning".
I've prepared a short whitepaper to demonstrate how to intercept data over TLS secured connections.
SHA256 Checksum: 62fcb31b17ce90bc780a77607c2655ac387818d3a789e1e8bfd91f50007eb6f6 (WP_how_to_expose_your_customers_data.pdf)