Spring is here and making sure your website is secure should be part of your website’s spring cleaning. If your site becomes compromised, not only does it cost time and money to repair, it impacts your reputation and ability to do business. Remediating even a simple site defacement can be costly—and in many ways.
You might think that just because your website doesn’t have any juicy data to steal, like credit card numbers or other personal information, that compromising it isn’t worth the effort. Unfortunately, that’s not the case. Aside from data, a compromised site’s visitors—your site visitors—can be affected and potentially monetized in various malicious ways.
In a Google Security Blog post titled “Moving towards a more secure web”, Chrome Security Team describes the incremental move to https for all websites. This plan to label HTTP sites more clearly and accurately as non-secure will take place in gradual steps, based on increasingly stringent criteria. Expected at the end of January 2017, Chrome 56 will label HTTP pages with password or credit card form fields as “not secure”.