Secure login?

I notice that the login page is not encrypted using https. Is this correct? Shouldn’t the login be secure?

You are correct that currently it is not encrypted. Only pages where credit card information is entered or displayed uses encryption. It would probably be a good idea to add encryption to login pages as well, now that C2’s server capacity has been increased. I’ll see what I can do.