#not secure

(via Millions of PC motherboards were sold with a firmware backdoor | Ars Technica)

Hidden code in many Gigabyte motherboards invisibly and insecurely downloads programs.

You may have noticed the above warning suddenly appearing when viewing certain websites, maybe even on your own website, and now you are probably asking yourself “why is my website suddenly not secure?”.  The answer is: all websites that don’t have a security (SSL) certificate installed will now cause many browsers to display this message. 

The web browsers want the entire internet encrypted immediately. And they are using several initiatives to accomplish that. Back in February of 2016, when this push began, just 3% of the internet was encrypted (per a Net craft Report). Today, Google measures encrypted traffic at around 80%. That’s serious progress, but still a long way from complete encryption.

The most aggressive step to encourage all sites to encrypt is actively warning visitors when they a visit web page that doesn’t have SSL/TLS configured. The goal of this initiative is to clearly display to users that HTTP provides no data security what so ever. The browsing community is not messing around when it comes to its push for universal encryption. Though the browsers the originally started by incentivizing HTTPs, today they are actively penalizing website that are still served via HTTP.

Early in 2017 Google began warning users when websites had insecure login field. Then in October, the warning expanded to any insecure text field. In July, Google Chrome will mark all HTTP web pages as not secure. Later in 2018, Google plans to make the not secure warnings more forceful, as they push for all websites to switch to HTTPS.

The web browsers want the entire internet encrypted immediately. And they are using several initiatives to accomplish that. Back in February of 2016, when this push began, just 3% of the internet was encrypted (per a Net craft Report). Today, Google measures encrypted traffic at around 80%. That’s serious progress, but still a long way from complete encryption.

Gmail marking emails that are sent from non-secure mail server

As per Netcraft, 82% of mail servers are not using a publicly trusted SSL certificate, in response to this, Google has started flagging emails too originating from unsecured mail server. Once a mail server has an SSL Certificate installed on it, Gmail recipients will be told that the email they open was delivered from an encrypted source, along with a link to learn more if they are unfamiliar.

Boost SEO Ranking with SSL/TLS Certificate

Google actively rank website with encryption higher than websites without it. Back in late 2014, Google announced SSL would be a ranking signal and the power of that signal has only grown since then. This is just one of the benefits of SSL. Think about it. Search engines want to send their users to the best possible result. So, if one result is more secure than another it going to rank higher. Encrypting your communication is just good security hygiene.

The Time to encrypt is now!

The internet is moving towards universal encryption. SSL is no longer just for business it’s a requirement for every website it’s a new web standard. While this is an ultimately a good thing for the entire internet and for the SSL/TLS industry, hosting companies and other IT Service provider need to be proactive and move fast to ensure all their customer are using SSL/TLS before these browser changes are full rolled out.

About Author

O que você precisar saber sobre GDPR!

Não se fala em outra coisa ao redor do mundo no dia de hoje além do GDPR. Só para você não ficar assustado logo de cara, o GDPR cobre grande parte da internet, no entanto, é mais um problema para grandes empresas como o Facebook e o Google, neste momento!

As informações contidas abaixo podem parecer assustadoras, no entanto, elas são realmente úteis para ajudar você a manter seu site da melhor…