The NSA might have occurred as services from Google and Microsoft with certificates from Dutch certificate authority DigiNotar. That would appear to be from a broadcast of a Brazilian tv program. In 2011, certificates of DigiNotar stolen.
In 2011, DigiNotar hacked, then the certificate authority fake certificates issued for domain names of Google, Microsoft, Mozilla and the Tor project. It is uncertain whether the NSA actually abused the hack, or even behind. The hack was claimed by a hacker from Iran.
The hack of DigiNotar last year marked the end of the Short company. The burglary came to light when Iranian internet users found that their internet traffic was intercepted. The hack appeared already to have taken place, but the company kept the hack under the cap. Then refused web browsers certificates of the company.