No, You Weren’t Hacked
If you use Chrome, then you’ve probably seen “Not Secure” just like in the image above. We first told you about the “Not Secure” warning back in February. The definition expands with the latest version of Chrome, Chrome 68, released by Google just over a month ago. Prior to Chrome 68, the warning only applied to login pages and forms.
The expanded “Not Secure” warning aims to push the web closer to safer browsing. Don’t worry. The “Not Secure” warning doesn’t mean you’ve been hacked. Chrome now labels any site that doesn’t use a valid security certificate with the HTTPS protocol.
What Is HTTPS?
HTTPS represents an encrypted connection between your device and the website you’re visiting. The encryption prevents a 3rd party from intercepting data shared between the first two. Additionally, encryption prevents that 3rd party from injecting their own code into the site you’re visiting. So while “Not Secure” doesn’t mean you’ve been hacked, it does mean that you could be. Data on an unencrypted site remains unprotected.
Encryption Is Becoming The Rule
Encrypted connections used to be limited to a handful of websites. You would typically find encryption on login pages or any site that handled financial information (credit cards, etc.). According to Google’s statistics, 47 percent of the sites visited by Chrome users in 2015 were unencrypted. Fast forward to today and that number has climbed to 84 percent. Additionally, Google has stated that all things being equal, encrypted sites will rank higher in search results than unencrypted sites.
Chrome’s “Not Secure” Will Change Again
Chrome 70 is expected to come out in October, and it will change the “Not Secure” warning from the simple warning you see now to a warning highlighted in bright red. If you haven’t gotten the hint yet, Google really, really wants websites to use encryption.
What Should You Do?
If you find yourself on a site labeled by Chrome as “Not Secure”, your safest course of action is to leave that site. Obviously, you can proceed at your own risk, but we recommend listening to Chrome’s warnings. Additionally, ensure that you’re running up-to-date security software. This should keep the risk down to a minimum.
If we lost you at “HTTPS” or you have enough on your plate, feel free to ask for help. You’re good at your job. We’re good at ours. Contact us today for a free consultation. We’ll make sure that your network and devices are secure and protected. Let us worry about the threats, and you can keep working knowing you don’t have to. Get started below.