[superkuh]

When it happened it broke websites' functionality (ie, it'd pop up in the Steam store browser and I'd be unable to close the pop-up within and have to start over). I even had it pop up between me and my bank website's non-HTTPS front page.

They may have desired to notify me of things but it's obvious what would happen. Those who implemented this system were not ignorant. They were malicious. Those above them telling them to do so may have been just ignorant or stupid.

These days I tunnel everything through one of my remote VPS.