There is a considerable amount of time between when a researcher identifies an issue and when script kiddies living next door to you in the hood can be expected to be looking at your traffic. And despite the alarmist articles claiming everything is broken and everyone will be subject to man-in-the-middle attacks and have their banking info stolen, SSL still works just fine for end to end secure communications as long as the attacker doesn't have access to your destinations private keys (they already hacked your bank), or has privileged access to a trusted Certificate Authority (they have the backing of a State actor). In neither case would they be wasting their time with you when they could be making millions quickly elsewhere.