It turns out that the government IS spying on not just anyone, but EVERYONE. Not just any government - all governments. Browser weaknesses allow ANY browser accepting CAs to be used as an espionage tool without alerting the user. The weakness? Certificate Authorities willingly leak keys to agents who ask for them. This allows seamless interception of ALL messages, Email, web browsing, and in the case of Windows - your entire operating system.
In Science, it is necessary to provide only ONE piece of evidence to disprove a theory, and at least three pieces to promote a theory. That makes things pretty robust, and that's why the "theory" of evolution is so strong. After 100+ years, nobody has introduced anything to actually disprove evolution. In the meantime, thousands of pieces of supporting evidence flow in each year - reinforcing the theory.
When THREE pieces of evidence come in to disprove a theory - it's considered absolutely dead in the water, sink it, bury the pond, and plant tulips. The theory that browsers are secure is utterly shattered.