SSL certificate issues in Google Chrome 70
If your website has SSL certificate issues in Google Chrome 70, but you know your certificate is valid, we will explain what the issue is and how you can fix it.
October 18, 2018

Why your SSL certificate is now showing as insecure under Google Chrome 70

We recently happened to view a customer website using the Beta version of Google Chrome and we saw it had SSL certificate issues in Chrome 70 whereby it showed the certificate as invalid.  We knew the certificate was OK and it only showed as problematic under Google Chrome 70.

So what’s the story?

Google (as the defacto internet police) are about to make a bunch of websites show as INSECURE and display the dreaded warning page before allowing a user to open a website when Chrome v70 releases.

The current version is 69 and according to their development schedule 70 is due to roll out from 16th October 2018.

Although this has been reported in the tech press already, it hasn’t really been that visible lately so hasn’t been on our radar.

It seems this all stems from Google thinking Symantec did a rubbish job of validating SSL certificates a while back and deciding they would mark them as insecure.  A stay of execution was reached when Digicert acquired Symantec…but that grace period has run out.

The certificates in question will be from Symantec, GeoTrust, Thawte, and RapidSSL and were issued before 1st Dec 2017.

How to see if my website is affected?

There’s a simple checker to see if a website has this timebomb: https://www.websecurity.symantec.com/support/ssl-checker.

If you use a paid SSL certificate we recommend you quickly check your site using the link above.  If you need help you can email [email protected] for assistance.

It says I need to change my certificate – how?

Go back to your providers website and follow the instructions to reissue a replacement certificate.

If this is not feasible, you can either purchase a new certificate or install a LetsEncrypt certificate instead.

Topics

Digital Business

Website Security

Site Performance

WordPress

GorillaHub News

Get the good stuff

We write about the topics that interest us the most – security, website optimisation and performance and making a business digital.

If you’d like to hear from us first in a non-spammy way, why not join our list and get the best stuff direct to your inbox?

Get a FREE website healthcheck

Get your personal assessment and PDF report on your business website security, performance & SEO.
  • WordPress security hardening
  • Known software vulnerabilities
  • HTTP / SSL check
  • Homepage load time & page size
  • Google Page Speed Insights
  • Accessibility, Marketing & SEO scores
  • Mobile optimisation
  • Google Analytics installation

You might like

Black Friday: 40% off Website Management Plans
Get expert protection from hackers, security problems, slow or broken pages and outdated content with active management of your Wordpress website.   Our website management plans are designed for any sized website and come complete with:   - Development...
Security issue in Woocommerce 3.4.5 – update required
Woocommerce vulnerability – make sure you have updated A recently published vulnerability in Woocommerce version 3.4.5 could allow attackers to take over an account with the Shop Manager role and gain full Admin privileges. This flaw has been fixed in Woocommerce...