The Chrome update is designed to spur sites still stuck on HTTP to move over to HTTPS, as Google explained back in February.
The “not secure” warning doesn’t indicate that you’ve been hacked — just that you’re not as protected if someone tries to do so.
The Hypertext Transfer Protocol lets your web browser fetch a web page from the server that hosts it. HTTP has had a good run, but it has a problem: It doesn’t protect communications with encryption that blocks eavesdropping and tampering. That’s why Google, Mozilla and other tech industry allies have been pushing websites everywhere to switch to the secure version, called HTTPS. And it’s why, starting with the release of Chrome 68 on Tuesday, Google’s browser will warn you whenever it loads an unencrypted HTTP website.
Today’s announcement is just the continuation of a plan to promote HTTPS around the web. In September, Google will remove the “Secure” indicator next to HTTPS sites, a sign that encrypted connections largely have become the default posture online. And in October, if you attempt to enter data on an HTTP page, Chrome will show you a “not secure” warning in red.
The web still has dangers plenty, and HTTPS may take a toll on certain sites that can’t or won’t upgrade. But at least from now on you can make a baseline assumption that your connection is secure. Because if it’s not, Chrome will tell you.