Using Chrome or Chromium? Browse to PayPal, right-click while on the page, select Inspect, and click on the Console tab. Bit of an exercise, but it’ll let you see the following notice:
The SSL certificate used to load resources from https://www.paypal.com will be distrusted in M70.
Once distrusted, users will be prevented from loading these resources.
See https://g.co/chrome/symantecpkicerts for more information.
Google hasn’t really been hiding this, they have been publicly talking about it since last year.
“Symantec’s PKI business, which operates a series of Certificate Authorities under various brand names, including Thawte, VeriSign, Equifax, GeoTrust, and RapidSSL, had issued numerous certificates that did not comply with the industry-developed CA/Browser Forum Baseline Requirements.”
The M70 release of Chrome will be in beta from September, and GA in October 2018. Yes, that’s quite soon!
All of this would be fine, if sites and companies would get a move on and deploy new certificates that don’t originate from this problematic source. One would expect PayPal to have done this months ago, but apparently not. It’s important to be aware of this, because come October it’ll be much more than a little inconvenience particularly for e-commerce sites: online payments via PayPal will start failing – unless and until PayPal and others update their certificates.