Facebook quietly rolled out secure hypertext transfer protocol (HTTPS) last week. Google started rolling out HTTPS for all its services in 2010, while Twitter enabled the encrypted protocol by default in February. HTTPS keeps the session cookie encrypted between logging in and logging out, preventing hackers from hijacking the session and impersonating the user. The importance of HTTPS was highlighted in 2010 with the release of a browser-based plug-in called Firesheep. The hack was seen when actor Ashton Kutcher had his Twitter account hijacked during the brainbox TED conference last year.”]
Source: https://www.csoonline.com/article/2132524/facebook-praised-for-encrypting-web-access-by-default.html