This topic

security

polish — Thu, 23 Nov 2023 00:12:11 GMT

Not sure if put in right board

When I click on email or my bt it comes up with a triangle and the following:-

Warning: Potential Security Risk Ahead

Firefox detected a potential security threat and did not continue to signin1.bt.com. If you visit this site, attackers could try to steal information like your passwords, emails, or credit card details.

What can you do about it?

The issue is most likely with the web site, and there is nothing you can do to resolve it. You can notify the web site’s administrator about the problem.

What should I do? Thans Jules

Re: security

Lizzie30 — Thu, 23 Nov 2023 00:21:55 GMT

I have the same problem. It's annoying.

Re: security

MJMWIT — Thu, 23 Nov 2023 00:28:38 GMT

I also get

Your connection is not private

Attackers might be trying to steal your information from signin1.bt.com (for example, passwords, messages or credit cards). Learn more

NET::ERR_CERT_COMMON_NAME_INVALID

Re: security

Ultraviolet13 — Thu, 23 Nov 2023 00:46:34 GMT

Seeing the same message in 3 different browsers. On top of all the other issues I'm now be warned not to connect to BT email at all because it's not safe to do so.

Chrome, Edge & Firefox all now show warnings that privacy will be compromised if you continue to the BT email site.

BT email not secure warning message.

Re: security

forehandlooper — Thu, 23 Nov 2023 01:21:21 GMT

I have my BT email on my iphone, my work pc and home pc. I am currently in Australia. All is good on my iphone but on my home pc and work pc i am getting certificate related errors indicating this maybe an issue at the BT end

Re: security

verkosh — Thu, 23 Nov 2023 08:19:06 GMT

That'll be an error on BTs end.

They need to renew or correct their SSL certificate

Re: security

forehandlooper — Thu, 23 Nov 2023 08:25:34 GMT

This has been fixed by the looks of things as i can now access without any issues

Re: security

MJMWIT — Thu, 23 Nov 2023 08:52:27 GMT

I'm now able to get into my E-Mail

Re: security

polish — Thu, 23 Nov 2023 09:58:54 GMT

Must have been sorted as can now get in, would be helpful to know why this happens though? thanks jules

Re: security

licquorice — Thu, 23 Nov 2023 13:50:36 GMT

As @verkosh said, BT inadvertently allowed the SSL certificate to expire.

Re: security

WSH — Thu, 23 Nov 2023 14:32:50 GMT

To put a bit more context on that, for anyone that wants to know why this happens…

Back in the day when people only looked at pictures of fluffy bunnies on the Internet the connection was not encrypted. Anyone intercepting the traffic could read it. It was not encrypted because that takes time and would slow down an already painfully slow connection. (And, who cares if some sees you’re addicted to fluffy bunny pictures?)

Scroll forward to today, people do online banking, give out credit card details for online shopping etc., so the need for encryption becomes far greater. (Plus, the connection is a lot faster, so the performance issues no longer apply). The form this encryption takes uses a “certificate”. Not a certificate in the paper sense but certification that the server at the other end is genuine. That certificate also provides an encryption key. (That’s actually quite an over simplification, but essentially true). This key allows you to encrypt the connection so no one can intercept it and read it. Useful if you are sending your credit card details.

Modern browsers today check for this encryption, known as HTTPS, (Hypertext Transfer Protocol-Secure). If the website still uses the older unencrypted HTTP it puts up a warning that this connection is “not private” or “not secure”. It doesn’t necessarily mean someone is intercepting it and reading it, of course, only that it is possible. Similarly, if the browser finds a problem with the certificate presented by the server, such as it being out of date, it flags the same error.

It’s all too easy to forget to renew a certificate. I’ve been caught out once like that myself but once bitten twice as shy.

Re: security

polish — Thu, 23 Nov 2023 14:58:27 GMT

Thank you very informative. Jules

Re: security

ScarletP — Thu, 23 Nov 2023 18:33:10 GMT

@WSH About time somebody explained this. Really useful to know.