The (login) pages of thethingsnetwork.org and forum.thethingsnetwork.org are not secured (it uses the http protocol method instead of the encrypted version https).
Nowadays the use of public (wifi) networks is so common that proper encryption of (login) pages is a requirement.
Even if the information on TTN isn't Top Secret, the passwords people enter can be the same as they use for email services or other critical accounts. Therefore https (using TLS1.2 at least) is recommended if not to say required.
Another question/suggestion: is it possible to use the same login system for the website and the forum? It's confusing that the account that has been registered with the website http://thethingsnetwork.org/ can't be used to login into http://forum.thethingsnetwork.org/ I had to create a similar account there. I think less internet savvy users this will have a hard time to grasp this...
Thanks for the initiative and I wish the network a long reach both literally and figuratively!