These days Google Chrome sent mass emails to web pages owners in order to warn them about upcoming Google Chrome security warnings. Back in April Google warned webmasters about this and now the browser is sending out reminders to everyone.
What does this mean?
Google Chrome considers HTTP “not secure” and a risk for the users’ data and it is now trying to convince every website to upgrade to HTTPS. As a consequence of that, starting October, Google Chrome will start labeling all HTTP websites as not secure. This will only happen when that site asks you to input anything into a form and it goes for any type of form, from email forms to login forms. The warning will also appear for HTTP pages in Incognito mode.
The emails that were sent out offer information about the Google warnings: “Starting October 2017, Chrome (version 62) will show a “NOT SECURE” warning when users enter text in a form on an HTTP page, and for all HTTP pages in Incognito mode.” The email also warned webmasters about what will be labeled as unsafe: “The following URLs on your site include text input fields (such as < input text type=”text” > or < input type=”email” >) that will trigger the new Chrome warning. Review these examples to see where these warnings will appear, so that you can take action to help protect users’ data. This list is not exhaustive”. The message was followed by a list of all the HTTP URLs from that website.
How do I prevent the security warning from appearing on my site?
Google Chrome suggests migrating to HTTPS as a solution “To prevent the “Not Secure” notification from appearing when Chrome users visit your site, only collect user input data on pages served using HTTPS”. Therefore, it seems that webmasters have no alternative and they will need to abandon HTTP.