# Why is Dominos Pizza Website not Secure?

kyphysics

### Your connection is not private

Attackers might be trying to steal your information from www.dominos.com (for example, passwords, messages, or credit cards). Link Removed

NET::ERR_CERT_INVALID
I literally ordered from them two days ago. I Googled "Dominos" and clicked the first link, which when hovering over IS an https:// site. . . yet, today when I click that link, Google Chrome shows me the above message with the https:// portion in my URL bar all in red and cross out with a slash.

How is this NOT secure, when the literal URL has https://?

## Answers and Replies

Staff Emeritus
When you Googled the error, what part of the explanation did you not understand?

FactChecker
Homework Helper
Gold Member
After Googling, there seems to be a few things that could be going on. This looks like a good reference.

PS. I do not get an error for the Dominos web site using the Firefox browser

Mentor
I get an error like this when connecting to a 3rd party wifi when the login screen fails to load. Where were you when you got this and who's connection were you using?

WWGD
Algr
When you Googled the error, what part of the explanation did you not understand?
Google isn't going to be able to tell you why a major corporation doesn't have it's act together on customer facing technology.

WWGD and Wrichik Basu
Homework Helper
Gold Member
Google isn't going to be able to tell you why a major corporation doesn't have it's act together on customer facing technology.
I do not get that error, so I suspect that it has something to do with his browser, his network, or a temporary problem at Dominos.

Staff Emeritus
I think that I have seen that error from many sites (even PF) at times when there are network problems or slowdowns. Any of us with flaky Internet communications see many more errors than those with reliable Internet.

StevieTNZ
Google isn't going to be able to tell you why a major corporation doesn't have it's act together on customer facing technology.
Who even said that was the case? The error is 'NET::ERR_CERT_INVALID'.

WWGD and berkeman
kyphysics
When you Googled the error, what part of the explanation did you not understand?
Do you talk to your wife (if you have one) consistently this way? Your consistent forum rudeness and total disrespect towards me [inappropriate content deleted by moderator]...

As for your question, I don't understand what you're asking, as I never Googled the error.

Last edited by a moderator:
Wrichik Basu
kyphysics
I get an error like this when connecting to a 3rd party wifi when the login screen fails to load. Where were you when you got this and who's connection were you using?

I think that I have seen that error from many sites (even PF) at times when there are network problems or slowdowns. Any of us with flaky Internet communications see many more errors than those with reliable Internet.
You both may be onto something.
I did have internet connection problems that same night, but not at that exact moment I tried to order from Dominos. I was still able to surf the web elsewhere without that happening (at the time, it was JUST Dominos' website). Albeit, I remember getting a "no connection" message for everything shortly afterwards, I think (like maybe within 15-20 minutes).

I did have an "outage" of internet for about 2 hours. I was using a home laptop with Verizon internet connection. Everything is fine now.

Staff Emeritus
And yet, the question remains unanswered.

Mentor
When you Googled the error, what part of the explanation did you not understand?

Do you talk to your wife (if you have one) consistently this way? Your consistent forum rudeness and total disrespect towards me...

As for your question, I don't understand what you're asking, as I never Googled the error.

And yet, the question remains unanswered.
It's an implied two-part question and kyphysics did in fact answer the first one: Question: Did you google it? Answer: No. Follow-up: do it. And report what you find. And google it first next time too. The fact that you (kyphsics) didn't get that is kind of eye-popping.

I suspect if I were married to V50 and we had kids we would have conflict regarding parenting styles. But on a rudeness scale of 1-10 I rate this about a 3, and as always, the message is exactly on point. @kyphysics I've noticed some improvement, but you have a long way to go in terms of basic adulting. PF does not have a parenting style policy, and teaching adulting is not really part of our mission. It's kind of an unsupported feature, with haphazard implementation. That's why this little conflict hasn't had any sort of resolution.

phinds, Vanadium 50 and berkeman
Homework Helper
2022 Award
At least they're not passing your order to their server using GET, as one site I dealt with in the mid-2000s did, before advanced concepts like "If you need a storefront, licence an existing application instead of trying to create your own without a full understanding of the technology" were widely understood.

Gold Member
I would never give my credit card directly to Dominos. Or similar companies. Average companies do not have the budget nor the expertise, in many cases, to know all security best practices, nor will in many cases the contractor doing their website have it. I try to limit giving my credit card to companies with a large enough incentive to get it right. Mostly, I will only pay an average company these days using one of the big three micropayment services: Paypal, Google Pay or Amazon Pay. Those companies have a fighting chance of having up to date security practices, and they have an incentive to make security a priority. But there are no guarantees; this is just my recommendation for how to minimize the likelihood of getting my credit card stolen.

Staff Emeritus
I would never give my credit card directly to Dominos. Or similar companies.
I think you make good points. But in the US, credit cards have the advantage of limiting your liability for fraud to $50. The online payers have no such legal burden. harborsparrow Mentor FYI, I was able to capture the phenomena I was describing. It's caused by connecting to a wifi network with a login page (McDonalds) that doesn't load properly. Gold Member It seems the letter h is missing from the beginning of the URL. Is that a bad link you can simply report to the webmaster? Gold Member Average companies do not have the budget nor the expertise, in many cases, to know all security best practices Slightly above average size companies have the habit of failing at this too. limiting your liability for fraud to$50
Most (all?) will cover the \$50 too.

BoB

Mentor
It seems the letter h is missing from the beginning of the URL. Is that a bad link you can simply report to the webmaster?
It's CNN. I don't know why the link doesn't show up right in the error page, but it doesn't matter. Every link gives the same error.

If it were just a bad link it would give a page not found error, not a security error.

Gold Member
I would never give my credit card directly to Dominos. Or similar companies. Average companies do not have the budget nor the expertise, in many cases, to know all security best practices, nor will in many cases the contractor doing their website have it. I try to limit giving my credit card to companies with a large enough incentive to get it right. Mostly, I will only pay an average company these days using one of the big three micropayment services: Paypal, Google Pay or Amazon Pay. Those companies have a fighting chance of having up to date security practices, and they have an incentive to make security a priority. But there are no guarantees; this is just my recommendation for how to minimize the likelihood of getting my credit card stolen.
Well, I doubt they will, given they haven't done it by now, despite several companies having had egg in their faces after their sites were hacked and several credit cards were obtained from them.
Could it be someone spoofing the address and for that reason the certificate was not legit?

StevieTNZ
Could it be someone spoofing the address and for that reason the certificate was not legit?
I don't think it has anything to do with the security certificate, moreso the wireless connection being used at the time.

Whenever I'm out and about with my laptop, I create a mobile hotspot with my phone and use the 4G network. I don't tend to connect to open wireless connections (I believe there is a setting within Windows 10/11 that gets the machine to connect to any it finds - I disabled that setting). If I were to connect to a open wireless connection, I would use a VPN.

WWGD