Https from Symantec? Tens of thousands of websites will be labeled unsafe if they do not discontinue the HTTPS certificate they use for the next two months.
Thanks to a decision made in September, Google stopped considering SSL / TLS issued by Symantec secure.
The decision will take effect in mid-April, and Chrome browser users who visit such pages using security certificates issued before June 1, 2016, or after December 1, 2017, by Symantec will be alerted by the browser. , that their connection is not private and that their information may be intercepted.
The change will come with version 66 of Chrome, which will be released on April 17. But the problem will become even bigger on October 23 when build 70 is released, which will recognize all Symantec certificates as unreliable.
Of course, not everyone uses Chrome and also not everyone immediately upgrades to the latest version. But no matter how we do it, websites that use HTTPS from Symantec will run into problems.
So if you are a company, or an organization that uses Symantec security protocols you should do something soon, so as not to be exposed.
Symantec, meanwhile, claims that only 127 certificates were issued incorrectly, not the 30.000 originally announced. However, a few months after the revelation of the "wrong" certificates and after the insistence of Google, Symantec sold the certificate department to DigiCert.