Search
Get in Touch
News

Google Chrome will finally default to secure HTTPS connections starting in April

Engadget
Engadget

The transition to the more-secure HTTPS web protocol has plateaued, according to Google. As of 2020, 95 to 99 percent of navigations in Chrome use HTTPS. To help make it safer for users to click on links, Chrome will enable a setting called Always Use Secure Connections for public sites for all users by default. This will happen in October 2026 with the release of Chrome 154. 

The change will happen earlier for those who have switched on Enhanced Safe Browsing protections in Chrome. Google will enable Always Use Secure Connections by default in April when Chrome 147 drops. When this setting is on, Chrome will ask for your permission before it first accesses a public website that doesn't use HTTPS. 

Google has been moving in this direction for some time. Chrome started alerting users to unsecure HTTP websites in 2018 and it began defaulting to HTTPS in April 2021. The following year, it started offering Always Use Secure Connections on an opt-in basis. 

When HTTPS isn't used, an attacker can reroute the connection with relative ease and target a user with malware, social engineering attacks or other exploits. "Attacks like this are not hypothetical — software to hijack navigations is readily available and attackers have previously used insecure HTTP to compromise user devices in a targeted attack," the Chrome team wrote in a blog post. "Since attackers only need a single insecure navigation, they don't need to worry that many sites have adopted HTTPS — any single HTTP navigation may offer a foothold. What's worse, many plaintext HTTP connections today are entirely invisible to users, as HTTP sites may immediately redirect to HTTPS sites." Always Use Secure Connections is one of the Chrome team's attempts to mitigate such risks.

HTTP connections still persist in navigations to private sites, such as local IP addresses and company intranets. It's complicated for a private site to obtain an HTTPS certificate (something Engadget has had since 2016, fact fans), because the same private name can point to different hosts on multiple networks. For instance, many router manufacturers use "192.168.0.1" as a local IP address for accessing the hardware's admin panel. Still, HTTP navigations to private sites are inherently less risky than on the public web. They aren't entirely safe, but the only vector of attack for HTTP on private sites is from within the local network.

This article originally appeared on Engadget at https://www.engadget.com/cybersecurity/google-chrome-will-finally-default-to-secure-https-connections-starting-in-april-170000603.html?src=rss

Read more @ Engadget

Previous article
Google is once again disputing Gmail was breached
Next article
Battlefield 6’s free battle royale mode is out now
Engadget
Engadget

Latest posts

I tested 4 of Dyson’s best stick vacuums head to head – this is the one to buy, and the one to avoid

TechRadar - 0
Most of Dyson's vacuums look pretty much the same, so figuring out what the differences are – and crucially, if those differences will translate...

Virgin Media offers Meta Ray-Ban smart glasses or £125 bill credit with new broadband and TV packages

TechRadar - 0
Virgin Media is offering new customers the opportunity to get a pair of Meta Ray-Ban (Gen 1) smart glasses, worth £329, or a £125...

Interview: Canva reveals what creativity in the age of AI and why Affinity is free for all

TechRadar - 0
Canva has been hitting the headlines of late, with a stream of updates - including the launch of its Creative Operating System and, more...

We found 70 stocking stuffers under $100 that are actually useful

The Verge - 0
Google’s Pixel Buds 2A come in several colors, but purple is the way to go. Let's face it, it's easy to fixate on the big...

The long shot

The Verge - 0
The long take, the unbroken tracking shot, "the oner" - whatever you want to call it, filmmakers agree that it's one of the most...

Parents call for New York governor to sign landmark AI safety bill

The Verge - 0
A group of more than 150 parents sent a letter on Friday to New York governor Kathy Hochul, urging her to sign the Responsible...

Amazon pulls its bad AI video recaps after Fallout fallout

Engadget - 0
Amazon has responded to viewers catching errors in its AI-generated season recaps by apparently pulling them from Prime Video. The company announced its new...

WWE Saturday Night’s Main Event: How to watch John Cena’s final match for free

Engadget - 0
John Cena began his WWE retirement tour back in January, and it's coming to an end this weekend when the wrestling legend headlines WWE...

iOS 26.2 has landed — here are the 7 biggest new features for your iPhone

TechRadar - 0
iOS 26.2 is rolling out now for iPhonesIt includes several new and improved features for Reminders and moreHighlights a new way to share over...

This Zotac mini PC has the most powerful GPU ever bundled in a PC of this size — 16GB GeForce RTX 5060 Ti is...

TechRadar - 0
Zotac ZBOX MAGNUS EN275060TC fits a desktop RTX 5060 Ti efficientlyRTX 5060 Ti delivers performance close to the 5070 Ti laptop GPUHybrid PCIe design...

Want to stay up to date with the latest news?

We would love to hear from you! Please fill in your details and we will stay in touch. It's that simple!

The AIVAnet is a collector and classifier of app news articles and online technology news, which works automatically by collecting and collating the RSS feeds from popular sites (IOS news feed,latest tablet news, etc.).

The articles deal with mobile app reviews, especially with android reviews, and IOS. One of the central thematic axes is also the comparisons. You can find articles with tablet reviews, comparisons and mobile OS systems or mobile OS stats.

We also provide some of the most popular app news express, for android and IOS or windows phone. The online technology news that you can find in our pages are just opinions and ideology, allowing you to see how different news agencies present the same news.

AIVAnet is supported by Cloud Services Store

About Us

© AIVAnet | All rights reserved