Certificate authorities (CAs) have given themselves a black eye lately, making it hard for users to trust them. Google stopped trusting Symantec after discovering the CA had mis-issued thousands of certificates over several years. Lets Encrypt issued 15,270 certificates containing the word PayPal in either the domain name or the certificate identity. Each type of certificate addresses a different internet security use case, each type addressing a different use case. Free CAs have made it so easy to get certificates, so you know what is happening behind HTTPS.”]
Source: https://www.csoonline.com/article/3187338/know-the-limits-of-ssl-certificates.html