Chrome 68 is here. All HTTP sites will be marked with ‘not secure’

Web Wise
Well, its here. On July 24th, Google officially launched Chrome 68. With new features and security enhancements, Chrome continues to leverage its market dominance to push for a safer and more secure internet. From the beginning, security has been one of Chrome’s core principles and one of the biggest changes in Chrome 68 is displaying ‘Not Secure’ warnings for websites not encrypted with HTTPS ,or those sites without a SSL  { What is an SSL Certificate?}. Nearly two years ago, Google announced that Chrome would eventually start marking all sites that are not encrypted with HTTPS as “Not Secure” as an attempt to motivate site owners to improve the security of their websites. With the release of Chrome 68, this has now become a reality. Starting in October 2018, Google plans to start showing a redNot Secure” warning when users enter data on pages that are not served using HTTPS. Continue reading “Chrome 68 is here. All HTTP sites will be marked with ‘not secure’” »

Important Notice Expiration Notice For Your Domain Scam

Web Wise
As we know there are people all over the world using different unethical tactics to try to obtain money from unsuspecting victims. Some do it without actually breaking the law. Such as leveraging these bogus domain expiration emails that are pouring in to unsuspecting business owners email accounts. If you received a similar email such as the one below, and wondering what you should do, read on to find out more.

First, how are they getting all your companies information? Well that is easy, as every domain name registered displays the registrants personal email, company address, phone number to the public.  You can find your public listed information by typing in your domain name at the official ICANN Domain Name Registrar site: Unless you purchase additional services to hide it or have a reputable web firm registrar it on your behalf, its fair game.  We offer both secure domain registration options for our clients. These folks that send these emails scrape the internet for this public information, even get triggered when new domains are registered so they have all the info needed, including your name, email address, home address and when the domain expires, which is all used against you. Next, they add fear and limited time to the equation. The whole email structure is to capture fear that something is going to happen if you don’t respond. So the next step is to have you quickly read the headings, since they know your busy and don’t have time to read the whole thing. They figure you know you need a domain name to properly display your website (and keep your email working), so they state its going to expire. Here is the fine print:

This important expiration notification notifies you about the expiration notice of your domain registration for search engine optimization submission. The information in this expiration notification may contain confidential and/or legally privileged information from the notification processing department of the Domain Seo Service Registration to purchase our search engine traffic generator. We do not register or renew domain names. We are selling traffic generator software tools. This information is intended for the use of the individual(s) named above.If you fail to complete your domain name registration search engine optimization service by the expiration date, may result in the cancellation of this search engine optimization domain name notification notice.

But in reality, its a ploy to buy some type of SEO service service, which they don’t explain what that entails unlike our SEO service page.  I have tracked many of these types of emails coming from mail servers located in other countries outside the US. So what do you do if you receive an email like this and its not from your website hosting or domain services provider? Simply delete it and/or mark it as spam in your email client. What happens if you did fall for this and send them money for it? Technically consider it a lesson learned. As they will not provide a refund and they keep changing the company and email these come from to prevent action taken on them. Hopefully this provides a little insight on these types of scam emails targeting specifically to business and non-profits that have websites. Let us know if you have received a similar email or if you know of anyone who actually signed up for this in the comments below.

SSL is no longer optional: Get Your Site Ready

Web Wise

As many may be familiar with; beginning July 1st, Google Chrome Browser will start
labelling all websites without SSL as Not Secure, other browsers to follow suite.

This is a big deal since the mighty Google Chrome browser has over 60% of the share (source NetMarketShare) . Which means 60% of your customers, as of July 1st, will be affected.  Other browsers, and the internet in general are simply transitioning to a fully Secure (SSL / HTTPS) pathway.

Right now Google is taking the charge and rightfully so.  Before this update you can expect your site to look like this, which is not a big deal unless visitors are submitting information to you (contact form etc..).

After the chrome update in July, your site will now look like this, which is not ideal, as it may send the wrong impression to visitors. Even if your site just displays information, they may not feel safe and leave.

The reason to obtain SSL Certificate services is so your site address in the browser will look like this.

If your manage your own hosting and support for your website, obtaining an SSL Certificate, generating the CSR (certified signing request), working with your hosting provider to actually add it to the server side along with working with the certificate issuer is actually rather painful.

Regardless if you choose Northwoods Web Designs to do all this for you, I highly suggest to work with your hosting provider to get your site converted.  There isn’t a whole lot in it for the hosting provider, except if they care about you as a client they will offer the service for an affordable fee and get you setup.

Not only will you avoid this issue stated in this article, you will be all set for the future when the rest of the browsers implement the same guidelines.

Plus with a SSL Certificate, you get to enjoy the additional benefits too:

  • More secure user experience
  • Protect user privacy
  • Increased conversions
  • Boost search engine rankings
  • Increased user trust
  • Show you care about users data and browsing privacy

If you found this helpful, please let me know. Or if you interested in having Northwoods Web Designs handle your website needs such as the hosting, maintenance & SSL security simply send us a message.

So You Thought About Creating Your Own Site From A Website Template Builder Site?

Web Wise

build-your-own-website-is-not-easyThere are several companies that are out there that are happy to take your money (Wix / 1and1 / others) claiming you can build your own site using their build-a-website tools. They market intensively to consumers and businesses, telling them that they can build their own website and consumers will mysteriously com

That’s hog wash and totally misleading. If you build it, consumers will not come.

Of course, you can build your own website. You could probably also design your own clothes and build your own furniture as well. But of course you wouldn’t because your clothes and furniture well would probably suck. Continue reading “So You Thought About Creating Your Own Site From A Website Template Builder Site?” »

Chrome will mark all HTTP sites as ‘not secure’ starting in July

Web Wise

There are changes coming to owners of sites that currently do not purchase SSL Certificates today.  For decades, using HTTP (not HTTPS) was the standard, HTTPS was only used for ecommerce sites etc… { What is an SSL Certificate?}

But within the next year, this will change where the norm must be HTTPS or your site will be viewed as not Secure and Google will even penalize it in search results, which is not what most business owners want.

Continue reading “Chrome will mark all HTTP sites as ‘not secure’ starting in July” »