diff --git a/etc/NEWS b/etc/NEWS
index 31a0c4938ad..ce5290171a1 100644
--- a/etc/NEWS
+++ b/etc/NEWS
@@ -172,17 +172,17 @@ the default one.  It is reimplemented in native code, reducing GC churn.
 To undo this change, set 'fast-read-process-output' to nil.
 
 +++
-** The Network Security Manager now warns about 3DES by default.
+** Network Security Manager now warns about 3DES by default.
 This cypher is no longer recommended owing to a major vulnerability
 disclosed in 2016, and its small 112 bit key size.  Emacs now warns
 about its use also when 'network-security-level' is set to 'medium'
 (the default).  See 'network-security-protocol-checks'.
 
 ---
-** The Network Security Manager now warns about <2048 bits in DH key exchange.
-Emacs used to warn for Diffie-Hellman key exchanges with prime numbers
-smaller than 1024 bits.  Since more servers now support it, this
-number has been bumped to 2048 bits.
+** Network Security Manager now warns about <2048 bits in DH key exchange.
+Emacs used to warn for ephemeral Diffie-Hellman (DHE) key exchanges with
+prime numbers smaller than 1024 bits.  Since more servers now support
+it, this number has been bumped to 2048 bits.
 
 +++
 ** URL now never sends user email addresses in HTTP requests.