Security Directory

S

Sursiendo

sursiendo.org

0

Sursiendo is a small non-profit organization focused on digital rights and digital culture, primarily serving Spanish-speaking communities in Latin America, particularly Argentina. The organization has been active since 2011 and provides advocacy, research, community accompaniment, and educational materials to promote collective digital rights and open, collaborative digital environments. Their website reflects a clear mission and thematic focus, targeting activists, researchers, and community members interested in digital culture and rights. Technically, the website is built on WordPress using the Understrap theme framework and employs jQuery. The site is mobile-optimized with good SEO practices and a moderate performance profile. Hosting details are not explicit, but the domain is registered with Gandi SAS, a reputable registrar. The website uses HTTPS but lacks advanced security headers and DNSSEC, which could be improved to enhance security posture. From a security perspective, the site demonstrates basic good practices such as HTTPS and clientTransferProhibited domain status but lacks cookie consent mechanisms and security headers like CSP or HSTS. No direct contact emails or phone numbers are provided, only a contact form. There is no visible security policy or incident response information. The domain WHOIS data is transparent and consistent with the organization's claims, supporting legitimacy. Overall, the website is professional, trustworthy, and content-rich but could improve privacy compliance and security hardening. Strategic recommendations include enabling DNSSEC, implementing security headers, adding cookie consent, and publishing security and incident response policies to strengthen trust and compliance.

Multilanguage for Weebly is a small technology business specializing in providing a SaaS application that enables Weebly website owners to add multiple languages and translate their websites easily. The company targets Weebly users who want to internationalize their online presence and increase traffic and sales by offering multilanguage support and translation services, including store product and checkout translation. The business maintains a niche market position with a focused service offering and positive user testimonials, supported by a clear contact presence and social media engagement. Technically, the website is built on the Weebly platform, utilizing jQuery 1.8.3, Google Analytics, Google Tag Manager, and Google reCAPTCHA for analytics, marketing, and security. Hosting is provided via EditMySite CDN, likely part of Weebly's infrastructure. The site demonstrates moderate performance and good mobile optimization but uses an outdated jQuery version and lacks some modern security headers. SEO practices are adequate with proper meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and uses reCAPTCHA to protect forms, but it lacks visible security headers and explicit security or incident response policies. Privacy compliance is partial, with a GDPR info page but no cookie consent banner or terms of service page. No vulnerabilities or exposed sensitive data were detected in the HTML content. Overall, the website is professional, trustworthy, and safe for general audiences. The risk level is moderate due to missing cookie consent and outdated libraries. Strategic improvements in privacy compliance, security headers, and updated libraries would enhance the security posture and user trust.

L

Leonardo Demartino

demartino.ar

0

Leonardo Demartino's website serves as a professional portfolio highlighting his expertise as a lead developer in software, game development, and multimedia applications. The site showcases a variety of projects across multiple platforms including iOS, Android, Steam, and consoles, positioning him as a niche player in the indie game and multimedia software market. The business model is primarily personal branding and project promotion, targeting developers, gamers, and potential collaborators. Technically, the website employs a modern and responsive design using Bootstrap, jQuery, and Google Fonts, ensuring good mobile optimization and user experience. The site is well-structured with clear navigation and professional content presentation. However, no CMS or hosting provider details are evident, and performance is moderate. From a security perspective, the site lacks visible security headers and privacy or cookie policies, which are important for compliance and user trust. No forms or analytics scripts reduce the attack surface and tracking footprint, but the absence of incident response or vulnerability disclosure information indicates room for improvement in security maturity. Overall, the website is trustworthy and professional but would benefit from enhanced privacy compliance and security best practices to improve its risk posture and user confidence.

Patio.coop is a global network of worker-owned tech cooperatives specializing in software development, communication, and design services. The cooperative model emphasizes democratic ownership and international collaboration, with over 80 cooperatives and 1500 cooperators across 24+ countries. The website presents a professional and consistent brand image targeting organizations and individuals interested in cooperative technology solutions. Technically, the site leverages modern JavaScript libraries such as Three.js and D3 for interactive globe visualizations, and uses standard web technologies including CSS3 and HTML5. Hosting and DNS are managed via NS1 DNS servers, indicating a reliable infrastructure. Security posture is moderate; domain registration includes transfer prohibitions, but lacks DNSSEC and security headers. No privacy or cookie policies are present, and contact is limited to a web form without direct emails or phone numbers. Social media presence is strong and aligned with the cooperative identity. Overall, the site is safe, professional, and functional but could improve in privacy compliance and security best practices.

F

Fiqus

farox.coop

0

Farox is a cooperative software development company based in Argentina, specializing in professional services related to Data Science, Machine Learning, high concurrency systems, and full-stack development. The company positions itself as a tech leader in the cooperative sector with over a decade of experience. Their website showcases key services such as product development, software consultancy, and team extension, targeting businesses seeking expert technology partners. The digital infrastructure is modern, leveraging React and Next.js frameworks hosted on AWS, with a professional and mobile-optimized website design. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security and security headers. Privacy compliance is limited due to absence of explicit policies and consent mechanisms. Overall, the website is trustworthy and professional, though improvements in privacy and security disclosures are recommended.

E

E-Pagos S.A.

epagos.com

0

E-Pagos S.A. operates as a comprehensive payment solutions provider primarily serving public agencies and private companies in Argentina. Their platform consolidates multiple payment channels including credit/debit cards, virtual wallets, bank transfers, and POS terminals, offering a flexible and secure payment ecosystem. The company has established a solid market presence since its founding in 2015, with a medium-sized operation and trusted by numerous governmental entities and enterprises. Technically, the website leverages modern web technologies such as Bootstrap, jQuery, and integrates security features like Google reCAPTCHA and PCI-DSS certification, indicating a mature digital infrastructure. Security posture is generally good with HTTPS enforced and spam protection, though improvements are recommended in DNS security and HTTP headers. Privacy compliance is partial, with clear privacy and terms pages but lacking cookie consent mechanisms. Overall, the site is professional, user-friendly, and trustworthy, with moderate tracking and analytics in place.

congocash.ar is a niche content website dedicated to the Congo Cash slot game by Pragmatic Play, providing detailed guides, gameplay features, and casino-related information primarily targeting Spanish-speaking online gambling enthusiasts in Argentina. The site is built on WordPress with SEO optimization via Rank Math and is mobile-optimized, offering a good user experience and relevant content for its audience. However, it lacks critical compliance elements such as privacy and cookie policies, and does not provide any contact or business verification information, which impacts its trustworthiness. The domain WHOIS data is suspicious due to a future creation date, raising questions about legitimacy or data accuracy. Security posture is moderate with HTTPS enabled but missing security headers and incident response contacts.

C

Centro de Administraciones Tributarias Subnacionales (CeATS)

ceats.org

0

Centro de Administraciones Tributarias Subnacionales (CeATS) is a well-established non-profit organization based in Argentina, focused on subnational tax administration collaboration, training, and research. The website reflects a professional presence with clear navigation, relevant content, and active engagement through events and educational programs. The organization partners with universities and government tax agencies, reinforcing its credibility and market position in the government and education sectors. Technically, the website uses a modern but standard technology stack including Bootstrap, jQuery, and various carousel and slider libraries. Hosting is stable with a reputable registrar, and the site is mobile optimized with moderate performance. However, there is room for improvement in accessibility and SEO optimization. From a security perspective, the site uses HTTPS but lacks advanced security headers and DNSSEC, which are recommended to enhance protection. No privacy or cookie policies were found, indicating compliance gaps with GDPR and other privacy regulations. Contact information is clearly provided, supporting business credibility. Overall, the website is trustworthy and functional but would benefit from enhanced privacy compliance and security hardening to align with best practices and regulatory requirements.

B

Bring Argentina Onchain

bringargentinaonchain.org

0

Bring Argentina Onchain is a focused advocacy campaign aimed at positioning Argentina as a global hub for cryptocurrency innovation and adoption. The website promotes Argentina's strong crypto talent and community, encouraging global builders to join the movement. The campaign is niche and community-driven without commercial services or products. Technically, the site is built on a modern React and Next.js stack with Tailwind CSS, providing a good user experience and mobile optimization. However, the site lacks critical security and privacy features such as security headers, privacy policies, and contact information. The absence of WHOIS data and domain registration details reduces trust and legitimacy verification. Overall, the site is professional and safe but requires improvements in security posture and compliance to enhance credibility and user trust.

E

Ethereum Foundation

devconnect.org

0

Devconnect.org is the official website for Devconnect Argentina 2025, an Ethereum ecosystem event organized by the Ethereum Foundation. The site serves as a comprehensive portal for event information, ticket sales, community engagement, and media partnerships. It targets Ethereum builders, users, and community members, positioning itself as a key event in the blockchain technology space. The business model revolves around event organization, community building, and ecosystem support, with a medium-sized operational scale and a founding date consistent with the domain registration in 2021. Technically, the website is built on modern web technologies including React and Next.js, with integrations for Matomo analytics, YouTube embeds, and external payment processors like Stripe and Daimo Pay. The site is well-optimized for performance, mobile responsiveness, and SEO, reflecting a mature digital infrastructure. Hosting details are not explicitly stated but DNS and registrar data indicate a stable setup. From a security perspective, the site enforces HTTPS, uses clientTransferProhibited domain status, and relies on trusted third-party services for payments and ticketing. However, DNSSEC is not enabled, and explicit security headers or incident response policies are not publicly documented. No vulnerabilities or suspicious content were detected. Privacy compliance is strong, with clear links to comprehensive privacy and cookie policies hosted on ethereum.org. Overall, devconnect.org presents a professional, trustworthy, and well-maintained web presence for a significant Ethereum community event. Strategic recommendations include enabling DNSSEC, publishing a security policy, and enhancing security headers to further strengthen the security posture and trustworthiness of the site.

P

Proyecto Ututo

ututo.org

0

Proyecto Ututo is a small, community-driven free software project focused on developing and distributing 100% free GNU/Linux distributions and related simulation software for solar and thermal energy systems. The project has historical recognition and aims to promote knowledge sharing and digital inclusion, especially in developing countries. The website content is primarily in Spanish and provides resources, downloads, and community information related to the Ututo project and SimuSol software. Technically, the site uses CMSimple_XH CMS, older JavaScript libraries, and is hosted on DigitalOcean. Google Analytics and Tag Manager are used for user tracking. Security posture is moderate with some gaps such as lack of DNSSEC and missing security headers. Privacy compliance is weak due to absence of privacy and cookie policies. Overall, the domain registration data is consistent with the project’s claims and history, supporting legitimacy.

N

Noticias Ambientales

noticiasambientales.com

0

Noticias Ambientales is a specialized environmental news portal founded in 2010, directed by journalist Luis Pavesio. It provides national and international news focused on environment, climate change, energy, sustainability, animals, and related topics. The website targets a general audience interested in environmental issues and operates in multiple languages including English, Spanish, and Portuguese. The business model is media publishing with content monetization through advertising and newsletter subscriptions. The site maintains a consistent brand presence and leverages social media channels to extend its reach.

W

Welbilt Latin America

welbiltlatam.com

0

Welbilt Latin America operates as a regional representative for multiple well-known commercial foodservice equipment brands, targeting businesses in the Latin American foodservice industry. Their website presents a professional and consistent brand image, offering product information, sales, and service support. The company maintains active social media channels and provides clear contact information, supporting strong business credibility. Technically, the website uses modern web technologies including Bootstrap, jQuery, and integrates analytics tools such as Microsoft Application Insights, Google Tag Manager, and HubSpot. The site is mobile-optimized, accessible, and SEO-friendly, though hosting details and CMS are not explicitly identified. Privacy compliance is addressed through a cookie consent mechanism and a privacy policy page, though GDPR compliance is basic. From a security perspective, the site enforces HTTPS and uses cookie consent tools but lacks visible security headers and published security policies or incident response contacts. No vulnerabilities or exposed sensitive data were detected in the HTML content. The absence of WHOIS registration data is a notable transparency gap, though the professional site presence mitigates some concerns. Overall, the website is well-constructed and business-focused with moderate to good security posture and privacy compliance. Strategic improvements include enhancing WHOIS transparency, publishing security and incident response policies, and implementing additional security headers to strengthen trust and compliance.

L

Lambda

lambdaclass.com

0

Lambda is a specialized deep tech venture studio operating under the Ergodic Group umbrella, focusing on advanced engineering solutions across multiple high-tech domains such as cryptography, machine learning, and distributed systems. Founded in 2014 in Argentina, it has expanded internationally with offices in South America and Europe. The company emphasizes engineering excellence, open source contributions, and a partnership-based engagement model rather than traditional staff augmentation. Technically, the website is well-constructed with modern technologies including Rust-based projects and privacy-first analytics, hosted on Cloudflare with a domain registered via Amazon Registrar. Security posture is strong with HTTPS and domain protection flags, though improvements can be made by enabling DNSSEC and publishing formal security and privacy policies. The site is professional, trustworthy, and safe for general audiences, but lacks some compliance documentation such as privacy and cookie policies. Overall, Lambda presents as a credible and technically mature organization with a clear focus on innovation and engineering quality.

M

MercadoLibre

mercadolibre.com

0

MercadoLibre is a leading e-commerce platform primarily serving Latin American markets, offering a wide range of products with services such as free same-day shipping. The website is professionally designed with consistent branding and clear navigation targeting a general audience across multiple countries. Technically, the site leverages modern analytics tools including Google Analytics, Google Tag Manager, and a proprietary Melidata SDK, hosted on AWS infrastructure, indicating a mature digital presence. Security posture is adequate with HTTPS enabled and domain protections in place, but lacks DNSSEC and visible security headers, which are recommended for enhanced protection. Privacy compliance is weak due to the absence of visible privacy and cookie policies, which should be addressed to meet regulatory requirements. Overall, the site is trustworthy and safe for general users, with no adult or explicit content detected.

D

Doctoralia

doctoraliar.com

0

Doctoralia is a prominent online healthcare platform in Argentina that facilitates finding medical specialists, reading patient reviews, and booking appointments both in-person and online. The website is well-structured, professionally designed, and targets patients and healthcare professionals in Argentina. It offers a comprehensive directory of specialists and integrates modern search and booking functionalities. The platform leverages advanced technologies including Vue.js, Algolia search, and multiple analytics and marketing tools to provide a seamless user experience. Security measures such as HTTPS and security headers are properly implemented, though some privacy compliance aspects like cookie consent banners could be improved. The absence of WHOIS registration data raises concerns about domain legitimacy, but the website content and branding are consistent with a reputable healthcare service. Overall, Doctoralia presents a strong digital presence with room for enhancements in privacy transparency and contact information availability.

E

Escorts Argentinas: Las mejores ESCORTS VIP de Buenos Aires y CABA

argentinaescorts.com

0

ArgentinaEscorts.com is an adult escort directory website focused on providing listings of independent VIP escorts in Buenos Aires and Capital Federal, Argentina. The platform offers categorized escort profiles with detailed information including age, height, location, and pricing. The business model centers on direct client-to-escort communication without platform commissions, targeting adult clients seeking companionship and social escort services. The website is built on WordPress using Elementor and Rank Math PRO for SEO, hosted likely via GoDaddy given the registrar and DNS information. The site is mobile optimized and presents a professional design with clear navigation and categorized listings. However, it lacks critical privacy and cookie policies, contact information, and security headers, which impacts its compliance and security posture.

E

Elite IT CG

elite-it.me

0

Elite IT Consulting Group operates as an Atlassian Partner providing specialized consulting services in Atlassian solutions, Agile methodologies, IT, and DevOps tailored to client needs. The company targets businesses primarily in Argentina, offering technology consulting services through a Wix-hosted website. The site demonstrates a moderate level of digital maturity with a professional design and mobile optimization but lacks comprehensive privacy and cookie policies, which are critical for compliance and user trust. Technically, the site leverages Wix's Thunderbolt framework and includes Google Analytics for tracking, indicating basic analytics capabilities. Security posture is adequate with HTTPS enabled but lacks advanced security headers and explicit incident response or security policy disclosures. WHOIS data is unavailable or protected, which reduces transparency and trustworthiness. Overall, the website is functional and professional but requires improvements in privacy compliance and security transparency to enhance trust and regulatory adherence.

T

Think Thanks

think-thanks.com

0

Think Thanks is a boutique consultancy specializing in marketing, strategy, digital transformation, and sustainability with over 15 years of experience. The company targets businesses seeking innovative and strategic solutions to evolve and grow, primarily in Latin America, with Argentina as the detected country of operation. Their service offerings include consulting and execution in marketing, branding, UX/UI, data strategy, and growth marketing. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress using Elementor and Yoast SEO, with integrations for Google Tag Manager and Facebook Pixel, indicating a mature digital infrastructure. Security posture is adequate with HTTPS and domain protection flags but lacks DNSSEC and security headers, which are recommended for improvement. Privacy compliance is weak due to the absence of privacy and cookie policies. Overall, the site is trustworthy and credible but could enhance user trust and compliance by addressing privacy and security policy gaps.

L

Leadaki

leadaki.com

0

Leadaki is a specialized digital marketing agency focusing on full funnel strategies leveraging data-driven marketing techniques. The company holds reputable certifications such as Google Premier Partner and Google Marketing Platform, positioning itself as a trusted player in the Argentine and broader Spanish-speaking digital marketing landscape. Their service offerings include performance campaigns, brand campaigns, programmatic buying, e-commerce marketing, and marketing automation through Cliengo. Technically, the website employs a modern tech stack with multiple analytics and marketing tools integrated, including Google Analytics, TikTok Analytics, Facebook Pixel, Hotjar, and VWO, indicating a mature digital infrastructure. The site is mobile-optimized and uses service workers for PWA capabilities, though accessibility features are basic. Security posture is strong with HTTPS and no exposed sensitive data, but lacks some security headers and formal policies. The absence of WHOIS data raises concerns about domain legitimacy, though the website content and certifications suggest a legitimate business. Privacy and cookie policies are missing, which impacts compliance. Overall, the website is professional and trustworthy but would benefit from enhanced privacy compliance and domain registration transparency.

G

Grupo Sabra

gruposabra.com

0

Grupo Sabra is a small Argentine software application development company specializing in blockchain solutions, integrating traditional technology with distributed ledger technologies and smart contracts. The company targets businesses and organizations seeking blockchain integration and offers services including blockchain setup, development, maintenance, and specialized solutions such as digital identity and product traceability. Their market position is supported by partnerships with reputable organizations like Microsoft, IOVLabs, and RSK, indicating a credible niche presence in the blockchain technology sector. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Owl Carousel, with good mobile optimization and SEO practices. However, there is no evidence of a CMS or advanced hosting details. Performance is moderate with basic accessibility features. The site lacks advanced analytics or tracking scripts, indicating minimal user tracking. From a security perspective, the site does not display HTTPS status or security headers in the provided data, and no privacy or cookie policies are present, which are critical for GDPR compliance. No incident response or vulnerability disclosure information is found. The absence of these elements suggests a moderate security posture with room for improvement in transparency and compliance. Overall, the website is professional and trustworthy with good business credibility but requires enhancements in privacy compliance, security best practices, and transparency to improve its risk profile and user trust.

P

Pan American Energy S.L., sucursal Argentina

pan-energy.com

0

Pan American Energy (PAE) is a leading integrated private energy company operating primarily in Argentina and the Latin American region. The company focuses on upstream oil and gas operations, downstream refining and distribution, and renewable energy projects. It positions itself as a major producer, employer, and investor in the energy sector of Argentina, with presence in neighboring countries. The website reflects a corporate and professional image with clear navigation and multilingual support, targeting investors, suppliers, and job seekers. Technically, the site is built on Microsoft SharePoint and ASP.NET technologies, leveraging modern JavaScript libraries and frameworks for UI and analytics integration. However, the absence of HTTPS and SSL certificates is a critical security flaw, exposing users to potential risks. Security headers are partially implemented, but key protections like HSTS and TLS protocols are missing. Privacy compliance is weak, with no visible cookie consent or GDPR indicators. Overall, the site demonstrates moderate digital maturity but requires urgent security improvements to protect user data and enhance trust.

D

Doppler LLC

fromdoppler.com

0

Doppler LLC operates a comprehensive marketing automation platform primarily targeting Spanish-speaking businesses in Latin America and Spain. Their website offers a wide range of services including email marketing, push notifications, SMS marketing, WhatsApp marketing, chatbots, landing pages, and data intelligence. The company positions itself as a leading SaaS provider in the marketing technology sector with a strong brand presence and extensive client testimonials. Technically, the website is built on WordPress and leverages modern marketing and analytics tools such as Google Tag Manager, OneTrust for cookie consent, and Zendesk for customer support. However, the security posture is notably weak due to the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that undermines user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies, and GDPR compliance is evident. Overall, the site is professional, content-rich, and user-friendly but requires urgent security improvements to meet modern standards.

G

Globant

globant.com

0

Globant is a leading global IT and software development company specializing in AI-driven business transformation and digital innovation. Operating across multiple countries, Globant offers a subscription-based AI Pods model alongside enterprise AI solutions, software engineering, and design services. The company is recognized as a top IT services brand with strong market positioning and a broad industry reach including finance, healthcare, media, and retail. Technically, the website is built on Drupal CMS, leveraging modern libraries and Google services for analytics and security. However, the site currently lacks a valid SSL/TLS certificate, which significantly impacts its security posture. Despite this, Globant implements strong security headers and privacy policies, including GDPR compliance and cookie consent mechanisms. The website demonstrates excellent content quality, professional design, and clear navigation, supporting a high level of business credibility. Strategic improvements in SSL/TLS configuration and enhanced security practices are recommended to elevate the overall security and trustworthiness.

M

MercadoLibre S.R.L.

mercadopago.com

0

Mercado Pago is a leading digital payments platform operating primarily in Latin America, with a strong presence in Argentina. It offers a comprehensive suite of financial services including digital accounts, prepaid Mastercard cards, money transfers, payment of services, loans, and seller tools such as Point devices and QR code payments. The platform is integrated with its parent company MercadoLibre, a major e-commerce player in the region, positioning Mercado Pago as a critical enabler of digital commerce and financial inclusion. Technically, the website leverages modern web technologies, including React-based frameworks, New Relic for performance monitoring, and Google Tag Manager for analytics and marketing. The SSL configuration is robust with a valid certificate and HSTS enabled, although DNSSEC is not enabled and CAA records appear misconfigured. No critical vulnerabilities were detected, but there is room for improvement in DNS security and explicit vulnerability disclosure. Overall, Mercado Pago demonstrates a mature digital infrastructure and a strong security posture, supporting its role as a trusted financial services provider.

The website exhibits a severely compromised security posture with multiple critical vulnerabilities that expose it to significant risks, including data breaches, service disruption, and regulatory penalties. The absence of HTTPS encryption is a critical flaw impacting data confidentiality and user trust. Key security headers are missing, increasing susceptibility to common web attacks such as clickjacking, MIME sniffing, and cross-site scripting. Compliance gaps with GDPR and NIS2 frameworks pose legal and operational risks, especially due to missing privacy policies and incident response procedures. Exposure of critical backend services like MySQL and PostgreSQL to the internet further elevates the risk of unauthorized access and data theft. Although email security and DNS health show relatively better scores, these strengths are overshadowed by critical network and application layer weaknesses. Immediate remediation is necessary to protect sensitive information, maintain customer trust, and avoid regulatory sanctions. Overall, urgent investment in security infrastructure and governance is required to stabilize the environment and reduce business risk.

T

TERMOELÉCTRICA S.A.

termoelectrica.com

0

The website http://termoelectrica.com demonstrates a critically weak security posture with multiple critical and high-risk vulnerabilities, most notably the absence of HTTPS encryption and essential security headers. This exposes the business to significant risks including data interception, regulatory non-compliance, and potential cyber attacks. Immediate remediation is essential to protect user data, maintain trust, and comply with legal requirements such as GDPR and NIS2.