According to a paper by Morgan Marquis at the University of Toronto based The Citizen Lab, spy agencies had been able to use unencrypted YouTube videos and Microsoft Live log-ins to install malwalware on your devices._No need to panic, however, as YouTube and Microsoft have moved on to encrypted connections, so this is not a current vulnerability for these services.