Hi there.
Avast's servers were (are?) vulnerable to Heartbleed.
https://gist.github.com/dberkholz/10169691https://lastpass.com/heartbleed/?h=avast.comIt seems to be fixed now, but the last time your SSL certificates were updated is 3 months ago.
Seeing how you guys provide IT security, it is weird to see you still haven't replaced this now untrustable certificate.
Furthermore, I also think it's weird that this forum, specifically registration and login are not standard in HTTPS.
Actually, going to HTTPS even breaks the site AND warns of mixed content.
Can we get a statement on this? Maybe the reports are just wrong? As an IT security company, this can't be how you intend to deal with this vulnerability.
With kind regards,
Joey van HUmmel