My Ooma uses outdated SSL cert, Chrome blocks it
Posted: Sat Aug 04, 2018 5:10 pm
Using Chrome dev channel Version 70.0.3510.2 gives the following message on https://my.ooma.com:
Of course most users are not on this version yet, but it will be in beta channel and stable channel in the next weeks.
Of course most users are not on this version yet, but it will be in beta channel and stable channel in the next weeks.
Code: Select all
Your connection is not private
Attackers might be trying to steal your information from my.ooma.com (for example, passwords, messages, or credit cards). Learn more
NET::ERR_CERT_SYMANTEC_LEGACY
Warnings may be common while websites update their security. This should improve soon.
my.ooma.com normally uses encryption to protect your information. When Google Chrome tried to connect to my.ooma.com this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be my.ooma.com, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Google Chrome stopped the connection before any data was exchanged.
You cannot visit my.ooma.com right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.