Google is done with reminders and warnings. It began marking web pages not using HTTPS as "Not Secure," and it turns out some of the world's most popular sites are affected.
The CA Security Council's London Protocol attempts to address the problem of phishing sites with legitimate SSL/TLS certificates, but the initiative perpetuates the myth that the pricier EV certificates are more secure than DV certificates.
A new project from the EFF offers a quick path to a more secure email ecosystem.
A bug from the 1990s allows attackers to spoof signatures on some encrypted emails in GnuPG and other tools.
A group of lawmakers from both parties have introduced a new bill in the House of Representatives that would stop states and local governments from passing laws governing encryption. This will prevent states from passing their own laws before the federal government figures out what to do.