No 'Unauthorized Scripts'
If you own a Joomla or WordPress site, and you have an SSL certificate, it may be displaying this error message in Google Chrome and some other major browsers. You'll see a tiny little icon at top right in your browser bar. Does it signal a breach? No. Does it pose a gigantic security risk? Usually not. Is your website broken/infected? Not at all. But, is it something you need to address?
Yes, and soon. Why?
1. We don't want to scare visitors away.
2. We need to keep Google happy.
What Is It About?
It's called "mixed content." Your website has a proper SSL certificate, which encrypts all transactions between the user's device and your server. Thanks to SSL, your pages load as "https" (hypertext tranfer protocol secure). All good. However, buried within your website are plugins and apps which might not be current. They might be referencing old resources around the Internet which are not connection-encrypted. Quite often the problem is an archaic path to a Google font. So although your website serves up to browsers via https, it may well contain a lot of garbage http links.
That's one reason why you need to keep all your extensions, components, widgets and plugins updated. Those updates gradually clean up big messes - until finally eliminating all nonencrypted server connections, thus minimizing your risk of being hacked.
Do "unauthenticated sources" really pose a danger to users? Very, very, very rarely. That's why Chrome shows users a discreet little warning, instead of actually blocking the site from loading. I'm a longtime user of Malwarebytes Pro. Not even that has ever blocked me from opening a site which bore this little caution flag. While we need to fix it, this is nothing that needs to keep you up at night. The only pain it's causing is some harm to your Google ranking.