Well it actually isn’t thaat bad.
Nowadays every website is encrypted
The connection to the website is encrypted, but you are right, it’s not like pre HTTPS badness
I assume the good ol’ E-Mail Spam Business is still going strong and getting stronger. If more people make business online, the more will fall to the “there’s a problem with your account, please re-enter your credentials” bait.
I’ve even seen phrases like: your account may have been compromised, please enter now your credentials to fix the problem and add a laver of protection to your privacy.
In the last few weeks, I got the same “your account is on hold” ( font in google colors ), always from a different sender, multiple times a day … Flagging these as Spam has no effect.
Makes sense. How about apps? I often read about popular apps that are not encrypting their traffic.
It’s basically the same. Nowadays there barely is any app that isn’t using HTTPS
This has been a problem like 5 years ago though. Like TikTok hasn’t been encrypted for a long time. If you’re worried, use a VPN-Tunnel that you trust.
Nowadays the only thing that is unencrypted is the site you’re accessing since the DNS protocol isn’t encrypted, but that’s also changing with the adoption of DNS over HTTPS