Google Chrome names and shames unsecured websites


Google is making good on the pledge it made two years ago to name and shame websites that use unencrypted HTTP connections instead of the more secure encrypted HTTPS connections.

HTTP stands for HyperText Transfer Protocol while HTTPS stands for Hyper Text Transfer Protocol Secure.

Now with the release of Chrome 68, a “Not Secure” warning is displayed on the URL bar when you visit a website that still uses HTTP connections, alongside with an icon that, when clicked on, will display a pop-up message that states “You should not enter any sensitive information on this site (for example passwords or credit cards) because it could be stolen by attackers”. Earlier, only the icon was displayed on unsecure websites.

The Star had previously reported the importance of using secure HTTPS channels when online. Secure websites are often identified by their address that starts with HTTPS and has a green padlock-shaped icon on the browser screen, which when clicked will show the security details of the site.

Wired reports that in September, Google will remove the “Secure” indicator from the URL altogether, probably a move by the search engine company to show that encrypted connection is the default safety measure. The article also states that starting October, all HTTP websites will have a “Not Secure” warning in red.

Either way, rest assured that if you unknowingly wind up logging into unsecure websites, Google will notify you of the security risk.