Hackaday

PhantomRaven Attack Exploits NPM’s Unchecked HTTP URL Dependency Feature

Having another security threat emanating from Node.js’ Node Package Manager (NPM) feels like a weekly event at this point, ...
Infosecurity Magazine

Chrome to Make HTTPS Mandatory by Default in 2026

Google has announced that Chrome will soon connect to websites more securely by default. Beginning with Chrome 154, set for ...

Google Chrome to warn users before opening insecure HTTP sites

Google announced today that the Chrome web browser will load all public websites via secure HTTPS connections by default and ...

Chrome To Warn Users Before Loading HTTP Sites Starting Next Year

Google Chrome will enable "Always Use Secure Connections" by default in October 2026, warning users before accessing public ...
Android Authority

For shame: You’ll never believe the sites still on HTTP

The Chrome browser will start labeling sites using HTTP as “not secure” today. Many sites on the internet are still not secure. The list compiled below includes major sites like FoxNews.com, BBC.com, ...
Ars Technica

Biggest DDoSes of all time generated by protocol 0-day in HTTP/2

In August and September, threat actors unleashed the biggest distributed denial-of-service attacks in Internet history by exploiting a previously unknown vulnerability in a key technical protocol.
TWCN Tech News

HTTP Downloader lets you download dozens of files simultaneously

HTTP Downloader is an open-source multi-part download manager for Windows that allows you to maximize download throughput. It can work well with FTPS and HTTPS protocols. It is a clean and organized ...