For Everyone’s Privacy, It’s time for the News Media to Encrypt
Privacy concerns, as much as anything else, should be ample motivation
The browser community has made no secret of its shared goal to mandate an encrypted internet. Already this year we’ve seen browsers start calling out sites with login fields that aren’t served over HTTPS, and those warnings figure to increase in severity over the coming months until eventually all HTTPS websites are labeled “not secure.”
One of the biggest industries that has yet to encrypt en masse is the news media. If you check the Alexa 500, the top news sites are a mixed bag. You have some, like The New York Times and The Guardian that have already encrypted, others like CNN and the Huffington Post have not.
It’s understandable. Full disclosure, we are an enterprise partner of The New York Times, we’ve helped them undertake a massive HTTPS migration and can certainly appreciate the challenges that come with securing older legacy systems, hard coded media, and a range of other difficult obstacles.
It’s a problem that almost all media companies face as they race to migrate to HTTPS before the browsers’ deadline reaches. In fact, it’s enough to almost make you want to put off the process altogether—as long as you can wait.
Unfortunately, that thinking would be a disservice to any media company’s readers. The reason for that is simple: privacy.
SSL Blocks Tracking
In the United States and around the world we’ve reached a time where the debate over privacy is boiling over. Governments and private companies alike are tracking internet users. Just recently, the US government attempted to get information on the people associated with an anti-Trump website.
Citizens’ privacy concerns are at an all-time high.
One of the benefits of SSL is it blocks an individuals’ activity on your website. Granted, someone can see that a person’s browser visited a website with SSL, but it can’t see what pages are being browsed.
This is a huge benefit to personal privacy. For instance, if a news site has a perspective section dealing with African American issues or LGBTQ issues, being tracked regularly across those kinds of pages could allow someone to infer certain details about an individual. This type of information is what allows advertisers to target ads your way and it also allows for third parties to profile you.
News sites, especially in the current political climate, have a duty to their readers to protect their privacy and prevent them from being tracked across their websites.
With freedom of the press under near-constant attack and regular cries of “fake news,” it already would be a bad look for a legitimate news outlet to be labeled “not secure.” But it’s a worse look for that news site to look like it doesn’t care about its users’ privacy. And at this point, that’s what it looks like when a news site has yet to encrypt.
5 Ways to Determine if a Website is Fake, Fraudulent, or a Scam – 2018
in Hashing Out Cyber SecurityHow to Fix ‘ERR_SSL_PROTOCOL_ERROR’ on Google Chrome
in Everything EncryptionRe-Hashed: How to Fix SSL Connection Errors on Android Phones
in Everything EncryptionCloud Security: 5 Serious Emerging Cloud Computing Threats to Avoid
in ssl certificatesThis is what happens when your SSL certificate expires
in Everything EncryptionRe-Hashed: Troubleshoot Firefox’s “Performing TLS Handshake” Message
in Hashing Out Cyber SecurityReport it Right: AMCA got hacked – Not Quest and LabCorp
in Hashing Out Cyber SecurityRe-Hashed: How to clear HSTS settings in Chrome and Firefox
in Everything EncryptionRe-Hashed: The Difference Between SHA-1, SHA-2 and SHA-256 Hash Algorithms
in Everything EncryptionThe Difference Between Root Certificates and Intermediate Certificates
in Everything EncryptionThe difference between Encryption, Hashing and Salting
in Everything EncryptionRe-Hashed: How To Disable Firefox Insecure Password Warnings
in Hashing Out Cyber SecurityCipher Suites: Ciphers, Algorithms and Negotiating Security Settings
in Everything EncryptionThe Ultimate Hacker Movies List for December 2020
in Hashing Out Cyber Security Monthly DigestAnatomy of a Scam: Work from home for Amazon
in Hashing Out Cyber SecurityThe Top 9 Cyber Security Threats That Will Ruin Your Day
in Hashing Out Cyber SecurityHow strong is 256-bit Encryption?
in Everything EncryptionRe-Hashed: How to Trust Manually Installed Root Certificates in iOS 10.3
in Everything EncryptionHow to View SSL Certificate Details in Chrome 56
in Industry LowdownPayPal Phishing Certificates Far More Prevalent Than Previously Thought
in Industry Lowdown