Last year around this time an interesting Firefox plugin appeared on the scene called Firesheep, making it easy for just about everyone to track other people on unencrypted public Wi-Fi and to easily get to their Facebook, Twitter, etc. information. Most of those companies have reacted in the meantime and have introduced secure http (HTTPS) sessions for their services so all traffic would be encrypted. Facebook was among the first. However, even now, one year later, HTTPS are still not activated by default. Users have to go to their security settings and turn it on manually. I wonder how many people have done that in the meantime. Not many I suspect.