Security Issue: Mojang.com doesn't use encrypted connection (HTTPS) by default

The issue

When you literally only enter the URL mojang.com (which is technically http://mojang.com), the encrypted Mojang site (https://mojang.com) won't automatically be used.

Effects

This opens up the possibility for hackers and eavesdroppers to manipulate the content of the site and spy on users of the unencrypted http://mojang.com site.

_{Tags: redirect, redirection}