Today, WordPress has turned on HTTPS encryption for all its WordPress.com websites, so all your selfieblog.wordpress.com sites will now be covered. And a little tip I learnt today, Google tends to favor websites that support HTTPS over HTTP-only website. So your WordPress.com website should now rank higher in Google search results.
Today we are excited to announce free HTTPS for all custom domains hosted on WordPress.com. This brings the security and performance of modern encryption to every blog and website we host.
Best of all, the changes are automatic — you won’t need to do a thing.
As the EFF points out as part of their Encrypt the Web initiative, strong encryption protects our users in various ways, including defending against surveillance of content and communications, cookie theft, account hijacking, and other web security flaws.
WordPress.com has supported encryption for sites using WordPress.com subdomains (like https://barry.wordpress.com/) since 2014. Our latest efforts now expand encryption to the million-plus custom domains (like automattic.com) hosted on WordPress.com.
Read more at WordPress