Pretty incredible report here about what is likely lawful interception of TLS encrypted communications (used by basically every web service) targeted at an instant messaging service popular in Russia..
the TLS communications were being recertificated in the middle (similar to how enterprise firewalls do TLS decryption) for six months to snoop on communications.. it only got rumbled as somebody (drum roll) let the interception certificate expire by mistake.
I don’t think it is widely understood how lawful interception works.
Governments can request broad access, including installation or access to middleware to intercept things.
Additionally, some countries have warrantless access to essentially any communications, eg https://www.bbc.co.uk/news/business-27732743
More providers should be more open about this as there’s a lack of tension point with governments, which harms society.