Google in its latest blog announcement has said that Chrome will now warn users before they submit personal information through “mixed forms” sites. These “mixed forms” are HTTPS sites that fail to submit personal data to HTTPS. Consequences result in the user’s personal data being accessed by other harmful parties. Among the changes include Google disabling the Autofill feature on mixed forms and alerting the user about a potentially insecure site as soon as they are prompted to key in personal data on mixed forms. However, if users themselves try to submit a mixed form, there will be a warning alert displayed to notify them of risks they might face in the future.
In addition to this, Google has also encouraged app developers to switch forms on their personal sites to HTTPS in order to keep everyone protected from harmful acts. With Google implementing tighter security features on Chrome, it is still important for users to be mindful of personal data threats circulating through the aforementioned mixed forms sites. (Source: Chromium Blog)
