This week, Chrome 56 and Firefox 51 were both launched. These patches bring a new alert about unlocked login pages, which appear in the address bar.
This is part of the move away from HTTP, which is unlocked, and leaves users’ activity vulnerable to peeking, interception, modification, and much more.
“This includes forms that post to HTTPS if the page itself is HTTP. Both the page itself, as well as the fields, need to be delivered over HTTPS to be properly secure and receive the “Secure” message and green padlock treatment. To help spread the word, Google has been sending messages via Search Console to warn admins if any unsecure fields are found on their websites.”
For any websites out there using HTTP, make sure a migration to HTTPS is in your immediate plans buy acquiring an SSL certificate and installing it. The encrypted web is coming, and the warnings are only going to get more severe. In fact, a Google engineer recently wrote “eventually, Chrome will show a Not Secure warning for all pages served over HTTP, regardless of whether or not the page contains sensitive input fields. Even if you adopt one of the more targeted resolutions above, you should plan to migrate your site to use HTTPS for all pages.”
This is happening and needs to be addressed quickly to keep rankings and your standing with the SERP’s. If you want to learn more please give us a call and we’d be happy to help you.