The key to HTTPS durability is your computer's trust in the remote party's certificate. This "trust" is based on a fairly large list of root certificates that are stored on your machine. If someone or something has the ability to manipulate this list (add their own certificates there or sign traffic with any of the already installed certificates), then there is no trust in HTTPS.
Those. HTTPS is good, but only for the purpose of transferring over open networks between two secure (uncompromised) hosts - your PC and the server.

No, you can't
go anywhere without an encrypted personal vpn from the public is just stupid now . There are
so many vulnerabilities today that it's stupid to rely on https.