Symantec SSL certificates will be distrusted by major browsers in October
News Courtesy of Wordfence.com:
This is a final reminder that legacy TLS certificates issued by Symantec, including those issued by authorities like Thawte, Geotrust, and RapidSSL which used Symantec as a central authority, will be distrusted by both Google Chrome and Mozilla Firefox beginning in October. Apple products have partially distrusted these certificates and plan to also distrust the full set of certificates at some point in Fall 2018. Digicert has acquired the Certificate Authority (CA) and its infrastructure, and is issuing free replacement certificates for all affected customers. If you have already replaced your certificate, no action is needed.
Having a distrusted SSL certificate is much worse than having none at all. While Chrome displays a not secure message for websites still using HTTP, it will all but prevent visitors from viewing websites with broken SSL certificates. A red triangle with an exclamation point is shown in the URL address bar and on a blank page with a stern warning. If your website is facing the issue it should be fixed immediately.
Fortunately, DigiCert (who acquired Symantec) is offering free replacements for those SSL certificates. Many people were left wondering why this is happening. In short, Symantec made some questionable decisions regarding proper protocol and guidelines when issuing those certificates. There was a potential for exploitation and abuse which led to other key players in the industry to, in essence, void them. It’s been over a year since this was decided and should be a surprise to no one.
For those of you still on the fence about getting an SSL certificate. Just do it! You can get one for free and SSL for Free has an option for those less technically inclined to have it installed. We know that SSL is a confirmed ranking factor, and seeing that green padlock is a symbol of trust. Still, some major websites have yet to convert from HTTP to HTTPS which I find shocking. However, I’d be surprised if 90% of websites aren’t using HTTPS/SSL in the next 2-3 years.