When it comes to security best practices, most publishers are better at writing about them than actually implementing them.
For years, researchers have made the call for news sites to adopt HTTPS, a more secure, encrypted alternative to HTTP that both prevents digital eavesdropping and assures readers that the site they’re reading hasn’t been altered by governments or criminals. And while a handful of sites such as The Washington Post, Vice News, TechDirt, and The Intercept have made the switch, the vast majority of the biggest news sites have not. (Web users can spot sites with HTTPS by the small lock that appears in their browser’s address bar.)Read More