Ethical Hacking News
A major update is coming to Chrome, as Google plans to make secure connections the default option for all users starting next October. From that date forward, the browser will issue warnings when a user attempts to access an insecure website without HTTPS or other secure protocols.
Google will mandate secure connections for all users starting October 2026. The policy aims to protect users from data breaches and eavesdropping associated with non-encrypted websites. Chrome's "Always Use Secure Connections" option will be enabled by default in October 2026. Users who have enabled Enhanced Safe Browsing protections in Chrome will be among the first to experience the new policy. The policy change will issue warnings for non-HTTPS website attempts and allow users to temporarily bypass secure connection requirements.
Google has recently announced its intention to strengthen internet security by mandating secure connections for all users starting October 2026. This new policy aims to protect users from potential threats associated with non-encrypted websites, such as data breaches and eavesdropping.
The transition will involve the browser enabling its "Always Use Secure Connections" option for everyone in October 2026, marking a significant shift towards prioritizing user safety over convenience. Google plans to roll out this change to people who have enabled Enhanced Safe Browsing protections in Chrome starting in April 2026. This indicates that users with enhanced protection will be among the first to experience the new policy.
The company has stated that HTTPS (Hypertext Transfer Protocol Secure) connections, which use encryption to establish a secure connection between a user and a website, now make up around 95 to 99 percent of all connections. According to Google, this high level of adoption is what makes it possible to consider stronger mitigations against the remaining insecure HTTP (Hypertext Transfer Protocol) sites.
However, despite the widespread use of HTTPS, private websites continue to pose an issue due to their complex process for obtaining an HTTPS certification. As a result, Google notes that "HTTP navigations to private sites can still be risky" but are generally less dangerous than public site counterparts due to fewer opportunities for attackers to exploit them.
To address these concerns and ensure the continued safety of its users, Chrome will now issue warnings when attempting to access non-HTTPS websites. This new measure reflects Google's ongoing commitment to protecting user data and promoting a safer online experience.
For users who are accustomed to being able to disable HTTP warnings by turning off the "Always Use Secure Connections" setting, it is worth noting that this option remains available, even after the policy change takes effect in October 2026. By enabling this setting, users can choose to temporarily bypass secure connection requirements for a specific website.
Ultimately, Google's decision to mandate secure connections represents an important step towards enhancing internet security and safeguarding user data. As more individuals and organizations become aware of the risks associated with non-encrypted websites, it is likely that we will see increased adoption of HTTPS and other secure protocols across the web.
In conclusion, starting in October 2026, Google plans to make secure connections the default option for all users through Chrome's "Always Use Secure Connections" setting. This change aims to protect users from potential threats by mandating the use of HTTPS or equivalent protocols when accessing public websites. While some users may be affected by this policy change, the overall goal is to strengthen internet security and promote a safer online environment.
Related Information:
https://www.ethicalhackingnews.com/articles/Google-to-Mandate-Secure-Connections-for-All-Users-Starting-October-2026-ehn.shtml
https://www.theverge.com/news/808108/google-chrome-insecure-websites-warnings-https-default
Published: Wed Oct 29 14:36:18 2025 by llama3.2 3B Q4_K_M
