Oh! I had not noticed that, but had to google it as soon as I saw your post. Apparently this is the result of a Chrome update because Google wants to improve connection security. Here's a short article that explains it: https://www.nytimes.com/2018/08/13/technology/personaltech/what-chrome-means-by-not-secure.html
I logged onto 365 using Safari, and I don't see this notification. I also noticed that in responding to your inquiry that my address bar is showing the "https" protocol, which means that this communication is secure. Not sure which parts of the 365 site are still using just the http and which are using https. I guess Google and Chrome will let us know!
Huh ... my daughter just walked past and I asked her why sometimes my Chrome shows "not secure" and sometimes it does not. She said my bookmark was old, with just the "http". She changed my bookmark, and not my address bar always shows the "https" (which is the secure protocol). So, I think 365 is using the secure protocol, but you might want to update your bookmark.
I had to have special permissions to access this site using the Wi-Fi at workplace( in my own lunchtime!)due to its insecurity. The system just blocked it
When you load a page as https, all the information between your computer and the 365project server is encrypted, meaning no one can read it or modify it. When you load a page as http, anyone on your local network, and everyone along the path the data takes to get to the server can read the data. For a site like this, it's not a too critical because all the data is public anyway.
The biggest risk is if you connect to this site using a http from a public wifi, someone could read your session cookies, then hijack your session and be logged in as you. ( https://en.wikipedia.org/wiki/Session_hijacking).
It may be helpful to install the plugin 'https everywhere' from the EFF. Any time you go to a page, it'll redirect you to https if it's available on for the site. Or the site administrator could set up an https redirect site wide to prevent anyone from accessing it without https.
Tweets ahoy!
Join the Group
Pin With Me
I logged onto 365 using Safari, and I don't see this notification. I also noticed that in responding to your inquiry that my address bar is showing the "https" protocol, which means that this communication is secure. Not sure which parts of the 365 site are still using just the http and which are using https. I guess Google and Chrome will let us know!
When you load a page as https, all the information between your computer and the 365project server is encrypted, meaning no one can read it or modify it. When you load a page as http, anyone on your local network, and everyone along the path the data takes to get to the server can read the data. For a site like this, it's not a too critical because all the data is public anyway.
The biggest risk is if you connect to this site using a http from a public wifi, someone could read your session cookies, then hijack your session and be logged in as you. ( https://en.wikipedia.org/wiki/Session_hijacking).
It may be helpful to install the plugin 'https everywhere' from the EFF. Any time you go to a page, it'll redirect you to https if it's available on for the site. Or the site administrator could set up an https redirect site wide to prevent anyone from accessing it without https.