Which just goes to show, the more they protest, the less it means.
Any "official" or Dept. of Commerce export approved crypto can be broken behind the scenes. I've long been suspicious of AES256 since the DES decryption debacle when an academic broke it with a custom piece of kit. If computing power (and a deliberately flawed algorithm) is all it takes the NSA has more than enough servers and mathematicians.
OpenSSL has a series of flaws and HTTPS must also be treated as suspect. SHA-1 has issues and these are the ones we know about. If this inheriant weakness is ever exploited no one can have any confidence in the financial system until a true, dependable, Open Source, and uncrackable crypto system is in place. We're talking total meltdown if the bad guys find a way in.
Crypto standards are being designed, by the Americans, to be flawed out of the gate. That needs to stop.
We need a tinfoil hat icon.