To put it even simpler than in the video.. When your source is using http vs https it makes man in the middle attacks easy as nothing is encrypted. You're sign in details. Not encrypted. You put in your email. Not encrypted. You put in your name. Not encrypted. You put in your address. Not encrypted. etc. It's a fairly simple fix so just check to see if the source you're using is https://www.website vs http://www.website A lot of browsers now provide a little icon in the url bar. A little green lock vs an unlocked red one. Take a look now. Meso should have a nice green lock. You can use addons like https everywhere for some encryption but it's best if the source itself is providing https.