Security warnings will pop up on the Daily Mail website today if visitors are using the latest version of Google’s Chrome browser.
It is one of many sites the browser will flag because they do not use HTTPS – the secure version of the web’s underlying data transfer protocol.
Many sites have switched to this version to protect visitors against data theft and hijacking.
About 20% of the world’s top 500 websites are using HTTP.
The HyperText Transfer Protocol (HTTP) defines how data is passed around the web. The “S” in HTTPS stands for “Secure” and ensures that data is encrypted before it travels.
In the UK many other sites, such as Sky Sports, Argos and Boohoo have also not yet adopted HTTPS.
There is no evidence that any of the sites which have not made the change to HTTPS are currently subject to attacks that abuse insecure data.
Why does it say the sites are not secure?
It’s because they do nothing to scramble the data passing between you and that website.
According to statistics gathered by security researcher Troy Hunt, more than half of all the web’s top one million sites have not flipped to HTTPS.
Mr Hunt has launched a site called WhyNoHTTPS? that lists the world’s most popular websites that are not using it. The list draws on statistics gathered by British security researcher Scott Helme.
The Daily Mail tops his UK list as the busiest site to lack the protective measure.
Other big names on the list include Chinese messaging firm Tencent QQ, block-building game Roblox and sports broadcaster ESPN.
See full details
