Gogo wireless got caught pulling a man in the middle attack of sorts with Google https by inserting self-signed certificates of authority and making themselves the issuing authority on their private net. If someone got control of these systems (or a credible forgery thereof), I imagine they could do something similar.