I believe the company is only active in that it still operates its service for existing customers. The website is very old, but you're right, it's admittedly ironic that a computer security company has an HTTP website.

The login page has ssl. https://enterprise.surety.com/MyAbsoluteProof/ChangeMyAccoun...

If the page that links to the login page hasn't proven it's secure, I shouldn't trust the links, and therefore shouldn't trust the destination. Hence why static landing pages need HTTPS just as much as login pages.

Fair enough, although you could check that the domain names are the same in this case.