A lot of secure sites are set to grind to a halt with security error messages in the next version of
Google Chrome, after the browser will drop trust for a major HTTPS certificate provider following a series of security incidents.
Chrome 70 is expected to be released on or around October 16, when the browser will start blocking sites that run older
Symantec certificates issued before June 2016, including legacy branded Thawte, VeriSign, Equifax, GeoTrust and RapidSSL certificates.
Yet despite more than a year to prepare, many popular sites are not ready.
Security researcher
Scott Helme found 1,139 sites in the top one million sites
ranked by Alexa, including
Citrus,
SSRN, the
Federal Bank of India,
Pantone, the
Tel-Aviv city government,
Squatty Potty and
Penn State Federal to name just a few.
Ferrari,
One Identity and
Solidworks were named on the list but recently switched to new certificates, escaping any future outages.