Google Chrome is probably the most popular browser in the world today, though there are better choices for privacy, but I digress. Google Chrome rose to prominence back in the days Microsoft’s Internet Explorer and other browsers were becoming difficult to use. The new browser offered better speeds and a better user experience than its competition.
One of the features Google Chrome introduced was the lock icon at the top left of the address bar. This lock icon was a way to show users that the website they were visiting had a valid SSL license and was encrypted. It was a way to distinguish if a website was using HTTP or HTTPS (no lock vs. lock).
HTTPS only prevents the website traffic from being transmitted in plain text, which is helpful for those who are trying to eavesdrop on your traffic. But malicious phishing websites can still put all sorts of nasty things on a page they built and secured with HTTPS.
PCMag pulled a quote from Google saying; “This misunderstanding is not harmless—nearly all phishing sites use HTTPS, and therefore also display the lock icon,” the company wrote in a blog post on Tuesday. “Misunderstandings are so pervasive that many organizations, including the FBI, publish explicit guidance that the lock icon is not an indicator of website safety.”
Google was a big pusher of HTTPS, as most websites back then were not using it. While HTTPS is a good thing, it’s not assurance that the websites you are visiting are safe. Therefore, Google will be removing the lock icon from Google Chrome in September of this year.
