Facebook Enables HTTPS for Everyone, Sophos Celebrates
Article by George Norman
On 19 Nov 2012
Facebook turns on secure HTTPS connections for everyone, security company Sophos celebrates by giving T-shirts away.

Back in 2011 Facebook announced that if you wanted to use the social networking site in a secure manner, you could turn on HTTPS from the Account Settings page and browse Facebook on a secure, encrypted connection. The downside was that the feature was an opt-in, meaning that you had to know about it and you had to enable it yourself – and that meant that many users, unaware of this new feature or unwilling to enable it, still browsed Facebook on a regular, unprotected connection.


The fact that Facebook made using HTTPS an opt-in did not escape the vigil eye of security company Sophos. Later in the year Sophos sent out an open letter in which it asked that Facebook does three things to provide a more secure experience for its millions of users.
  • 1. When a new feature that impacts the user’s privacy is added, Facebook should assume that the user cares about his privacy and should ask him to opt-in.
  • 2. Only vetted and approved third-party developers should be allowed to publish apps on the Facebook platform.
  • 3. That HTTPS becomes the norm on Facebook. Facebook should use HTTPS all the time and should turn this feature on for all users.

The news is that the immensely popular social network enabled HTTPS by default – on its developer blog, Facebook quietly announced that “we are moving to HTTPS for all users” and that “we’re starting to roll out HTTPS for all North America users and will be soon rolling out to the rest of the world.”

Only 18 months after Sophos’ open letter (read that with a lot of sarcasm in your voice), Facebook made HTTPS the default. To celebrate the fact that Facebook did this, Sophos is giving away T-shirts.

“Of course, Facebook's roll out of HTTPS leaves us with a problem,” said Graham Cluley senior technology consultant at Sophos. “We have a large pile of 'Dislike' T-shirts that explain the three steps we'd like to see Facebook implement to improve privacy and security. Clearly, with the roll out of HTTPS, one of those now needs to be crossed out. So, we need to get rid of our T-shirts. We've decided the fairest thing to do would be to offer them to loyal subscribers to our email newsletter.”

10 limited edition T-shirts will be given away to randomly selected newsletter subscribers every month until there are no more T-shirts in stock.
You can subscribe to the Sophos newsletter here.

Tags: Sophos, security, Facebook, HTTPS, t-shirt
About the author: George Norman
George is a news editor.
You can follow him on Google+, Facebook or Twitter

I Hope you LIKE this blog post! Thank you!
What do YOU have to say about this
blog comments powered by Disqus
Popular News
By George Norman on 17 Aug 2017
With the blockbuster movie season upon us, Sony decided to celebrate the occasion with a sale: the Attack of the Blockbusters Sale that offers discounts of up to 50% (60% if you’re a PlayStation Plus member) on a ton of PS4 video games.
By George Norman on 17 Aug 2017
Samsung’s new T5 portable solid-state drive (PSSD) uses the latest 64-layer V-NAND technology, offers between 250GB and 2TB of storage capacity, has a lightweight and shock-resistant design that’s smaller than the average business card, and delivers industry-leading transfer speeds of up to 540 MB/s.
Related News
Sponsored Links
Hot Software Updates
Top Downloads
Become A Fan!
Link To Us!
Facebook Enables HTTPS for Everyone, Sophos Celebrates
HTML Linking Code