It refers to the protocol that is being used. Some browsers are now flagging HTTP connections for passwords. Given the lack of financial consequences, it is not a major concern. Ben is planning a switch to HTTPS once SMF sort some of their shit out.
I know this isn't RAWK's fault but unfortunately a lot of people use the same password on multiple sites, so if there RAWK password was discovered it could lead them to being hacked elsewhere.
To be honest if you use the same password for sites like RAWK as you do for your important accounts like banking and email, you deserve everything you get...