Midway untrusted certificate? (Revoked)

[mehavey]

Anyone else getting an ESET "untrusted certificate static.hotjar.com" warning when accessing Midway ?

[turkeestalker]

Just tried it and seems fine on my end.
Check your current date and time on your PC, if that's not correct it can turn up that sort of warning.

[JohnKSa]

I don't get that error and the certificates for the Midway website look ok to me.

hotjar.com provides services that allow online stores to track various usage statistics. Some types of anti-malware/anti-adware/anti-virus software such as ESET might block that kind of service for one reason or another.

Maybe Midway uses their service--I don't know. When I looked at the html coding for few of their website pages, I didn't see hotjar.com referenced.

[mehavey]

Got the warning on Midway & Brownells, sinclaire, taylors -- not other sites (like grafs, amazon, amex, aaa, consumer reports, DMV, llbean, etc.

ESET does not like what its seeing in hotjar.com

interesting....

[Prndll]

The certificates for these sites are managed by digicert and "In 2017 DigiCert acquired the TLS/SSL and Public Key Infrastructure businesses of Symantec, including the Certificate Authority brands Thawte, RapidSSL, VeriSign and GeoTrust."

https://en.wikipedia.org/wiki/DigiCert

That's the link between them all.

[Marco Califo]

Quote:

ESET does not like what its seeing in hotjar.com

As near as I can tell Midway is not using Hotjar.com

I think your problem has to do with whatever is calling Hotjar. Try opening Midway in a different browser (Chrome, IE, Firefox) and see if it behaves.
I am running McAfee, provided by my ISP (as in free).

Your internet browser settings can be modified to discourage tracking (cookies that record what you looked at - and can be cleared).

"Do Not Track
Enabling "Do Not Track" means that a request will be included with your browsing traffic. Any effect depends on whether a website responds to the request, and how the request is interpreted. For example, some websites may respond to this request by showing you ads that aren't based on other websites you've visited. Many websites will still collect and use your browsing data - for example to improve security, to provide content, services, ads and recommendations on their websites, and to generate reporting statistics."

I am not seeing anything irregular at Midway's site.

[mehavey]

Well, ESET updated itself again about 5 min ago and now -- no warning.

Even after dumping the SSL cache, resetting the clock and checking recent update history/validation, I still kinda suspected an update module problem when the warning appeared all of a sudden... but the other three computers running it found no issue.

Fascinating.....

[turkeestalker]

Quick question... what do you use for malware protection?
Not antivirus, but specifically malware?

If you are not using anything, pm me and I'll share a pretty good program with you if you're interested.

[mehavey]

'Running ESET Internet Security/Anti-Malware for both

[Prndll]

Hotjar status page regarding this issue:

https://status.hotjar.com/incidents/9m13b4mrjtlw

"The incident was a result of a misconfiguration with our security certificate that we experienced over the weekend."

[mehavey]

So it wasn't my imagination

[Evan Thomas]

And on that note... this is off topic here anyway, so... closed.