Security Directory

K

KRKA, tovarna zdravil, d.d., Novo mesto

krka.am

0

KRKA is a well-established pharmaceutical company with nearly 70 years of experience specializing in the development, manufacturing, and sales of generic medicines and veterinary products. The Armenian website serves as a regional representation of the global KRKA group, providing detailed company information, product descriptions, and career opportunities. The site targets healthcare professionals and the general public, emphasizing quality and sustainability. Technically, the website is built on modern JavaScript frameworks (Nuxt.js) and integrates Google Tag Manager for analytics, demonstrating a moderate to good level of digital maturity. The site is mobile-optimized and accessible, with clear navigation and multilingual support. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though some security headers and incident response contacts are missing. Privacy compliance is partially addressed with privacy and cookie policies present but lacking explicit consent mechanisms. Overall, the website projects a professional and trustworthy image consistent with a large healthcare enterprise.

D

Digitain (MT) Limited

digitain.com

0

Digitain (MT) Limited is a well-established global leader in the iGaming software industry, specializing in sportsbook and casino platform solutions. Founded in 1999 and headquartered in Yerevan, Armenia, the company offers a comprehensive suite of products including sportsbook software, casino platforms, virtual sports, payment gateways, and API integrations. With over 4200 employees and more than 150 partners worldwide, Digitain holds a strong market position supported by multiple industry awards and a robust partner ecosystem. The website is built on a modern WordPress CMS platform with advanced SEO and performance optimizations such as WP Rocket, lazy loading, and Google Tag Manager integration. The technical infrastructure reflects a mature digital presence with mobile optimization, accessibility features, and a clean, professional design. The site employs anti-spam measures and integrates multiple third-party providers for enhanced functionality. From a security perspective, the site enforces HTTPS and uses anti-spam plugins, but lacks explicit security headers like Content-Security-Policy and does not publish incident response or security policy documentation. No vulnerabilities or exposed sensitive data were detected. Privacy compliance is partially addressed with a comprehensive privacy policy, but cookie consent mechanisms are absent, which could be improved to meet GDPR standards fully. Overall, Digitain presents a credible and professional online presence with strong business credibility and technical maturity. The absence of WHOIS data is a notable gap that slightly reduces trust but does not outweigh the positive indicators from the website content and business information.

Պ

Պետական գույքի կառավարման կոմիտե

e-auctions.am

0

The website e-auctions.am is an official Armenian government platform operated by the State Property Management Committee, providing electronic auctions for state-owned assets including real estate, vehicles, electronics, shares, and other movable property. It targets Armenian citizens and legal entities interested in participating in these auctions. The platform offers user registration, auction browsing, and bidding functionalities, positioning itself as the authoritative source for state property auctions in Armenia. The domain is recently registered in October 2023, consistent with a newly launched government service. Technically, the website uses a modern tech stack including Bootstrap for responsive design, Google Fonts for typography, FontAwesome icons, and Google Tag Manager for analytics. The site is mobile optimized with good navigation and content structure. However, accessibility features are basic and SEO optimization is minimal. Performance is moderate with no critical errors detected. From a security perspective, the site uses HTTPS and secure form submissions but lacks visible security headers and published security policies. No privacy or cookie policies were found, indicating compliance gaps with GDPR and related regulations. No incident response or vulnerability disclosure mechanisms are evident. The site does not expose sensitive data or use vulnerable libraries visibly, but improvements are recommended in security headers and policy transparency. Overall, the website is trustworthy and professional, serving a critical government function. The main risks relate to privacy compliance and security policy transparency. Strategic recommendations include publishing privacy and cookie policies, implementing security headers, and establishing vulnerability disclosure processes to enhance trust and compliance.

A

Armenpress

armenpress.am

0

Armenpress is a well-established Armenian news agency founded in 1999, providing comprehensive news coverage about Armenia, its diaspora, the region, and global events. The website offers rich multimedia content including articles, photos, videos, and podcasts in multiple languages, targeting Armenian-speaking audiences and beyond. The agency holds a strong market position as a trusted source of news in Armenia. Technically, the website employs modern web technologies such as JavaScript ES modules, CSS, and integrates Google Tag Manager and AdStock.pro for analytics and advertising. The site is well-optimized for SEO and mobile devices, ensuring excellent user experience. Security-wise, the site uses HTTPS with good SSL configuration and standard security practices, though explicit security policies and incident response contacts are not published. Overall, the site is professional, trustworthy, and compliant with privacy regulations, making it a reliable media platform.

J

Jaguar Armenia

jaguar-armenia.com

0

Jaguar Armenia is the official regional representation of the Jaguar automotive brand in Armenia, offering luxury vehicles and brand information primarily targeted at Armenian consumers. The website is professionally designed with a modern technical infrastructure based on Vue.js and Nuxt.js frameworks, incorporating Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and branding consistency. Security posture is adequate with HTTPS enabled, but lacks some security headers and explicit privacy and cookie policies. No contact information or incident response details are present, which limits user trust and compliance. Overall, the domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness.

J

Jaguar Armenia

jaguararmenia.am

0

Jaguar Armenia operates as a regional representation of the Jaguar automotive brand, targeting the Armenian market with localized content in Armenian language. The website showcases Jaguar's brand heritage and promotes its vehicles, positioning itself as an authorized Jaguar presence in Armenia. The business model focuses on retail and brand promotion within the transportation sector. Technically, the website is built using modern JavaScript frameworks such as Nuxt.js and Vue.js, providing a responsive and well-structured user experience. However, the absence of privacy, cookie, and terms of service policies indicates gaps in compliance and user transparency. Security posture is moderate but lacks visible security headers and explicit policies, which could be improved to enhance trust and protection. The WHOIS data is missing or unavailable, which raises concerns about domain registration transparency but is partially offset by the professional branding and content quality. Overall, the site is functional and professional but requires improvements in compliance and security transparency.

L

Land Rover Armenia

landrover-armenia.com

0

Land Rover Armenia operates as the official regional representation of the Land Rover brand in Armenia, focusing on showcasing luxury SUVs such as Range Rover, Discovery, and Defender models. The website is professionally designed with a modern tech stack including Nuxt.js and integrates analytics tools like Google Tag Manager and Microsoft Clarity. However, the absence of WHOIS registration data raises concerns about domain legitimacy. The site lacks visible privacy and cookie policies, which impacts compliance and user trust. Security posture is moderate but could be improved by implementing security headers and stronger SSL configurations. Overall, the website serves its business purpose well but requires enhancements in transparency and security to strengthen trust and compliance.

The domain toyota.am appears to represent a business related to the Toyota brand in Armenia, likely operating in the transportation sector. However, the website content is completely inaccessible due to a 403 Forbidden error, which blocks any meaningful content or metadata extraction. This severely limits the ability to assess the company's online presence, services, or customer engagement. The WHOIS data shows the domain was registered in 2016 and is active with a reputable registrar, indicating a legitimate registration consistent with a business operating in Armenia. From a technical perspective, the lack of accessible content means no information about the technology stack, CMS, or hosting provider can be determined. Security posture is weakly assessed due to absence of content and headers, but the presence of HTTPS is unknown. No privacy, cookie, or security policies are published, and no contact or incident response information is available, which raises concerns about compliance and user trust. Overall, the website's blocked status results in a low AI score and poor content quality, design, and user experience ratings. The domain registration data supports legitimacy, but the inaccessible website significantly impacts business credibility and security posture. Strategic recommendations include resolving access restrictions, publishing essential policies, and improving transparency and security practices to enhance trust and compliance.

G

Galaxsys

galaxsys.co

0

Galaxsys is an innovative B2B casino games provider specializing in fast and skill-based games for the iGaming industry. Founded in 2021 and based in Armenia, the company offers a portfolio of over 40 games, including award-winning titles, and supports integration via user-friendly APIs. Their market position is strengthened by partnerships with numerous reputable gaming operators and suppliers worldwide. The website reflects a professional and modern digital presence with good design and user experience, targeting iGaming operators seeking fresh and engaging content. Technically, the site employs a variety of marketing and analytics tools, including Google Tag Manager, Hotjar, and Facebook Pixel, and is hosted behind Cloudflare DNS services. Security posture is solid with HTTPS enforced and domain transfer lock enabled, though DNSSEC is not activated. Privacy and cookie policies are notably absent, representing a compliance gap. Contact information is clearly provided, including a company email and physical address in Yerevan. Overall, the site is trustworthy and well-positioned in its niche, but could improve privacy compliance and domain security.

S

Studio One

studio-one.am

0

Studio One is a medium-sized Armenian IT consulting and digital services company specializing in web design, development, mobile apps, online marketing, and security audits. The company serves a diverse client base including governmental, financial, e-commerce, manufacturing, consulting, and media sectors. Their website reflects a professional and consistent brand image with clear navigation and relevant content. Technically, the site uses modern JavaScript libraries, Google Analytics, and Google Maps API, but lacks some advanced accessibility and mobile optimization features. Security posture is moderate with HTTPS usage but missing important security headers and explicit security policies. Privacy compliance is weak due to absence of privacy and cookie policies. WHOIS data aligns well with the business claims, indicating legitimacy. Overall, the website is functional and professional but could improve in privacy and security transparency.

Enterprise Rent-A-Car Armenia, operated by J.M.S. LLC, is a well-established car rental and leasing service provider in Armenia, affiliated with the global Enterprise Rent-A-Car brand. The company offers a broad range of services including short-term rentals, long-term leases, one-way rentals, luxury vehicles, and chauffeur-driven rentals, primarily targeting both individual and corporate customers within Armenia. Their market position is strong due to brand recognition, a comprehensive fleet, and convenient locations such as Yerevan and Zvartnots Airport. Technically, the website is built using modern web technologies including React and Next.js, ensuring a responsive and user-friendly experience. The site integrates analytics tools like Yandex Metrica and Google Tag Manager for performance and user behavior tracking. The technical implementation is solid with good SEO practices and mobile optimization, although accessibility features are basic. From a security perspective, the site enforces HTTPS and follows several best practices, but lacks explicit security headers and detailed security or incident response policies. Privacy compliance is basic with privacy and cookie policies present but no active consent mechanism. Contact information is clearly provided, enhancing business credibility. Overall, the website presents a professional and trustworthy digital presence with room for improvement in privacy compliance and security policy transparency. Strategic recommendations include enhancing security headers, implementing GDPR-compliant cookie consent, and publishing detailed security and incident response policies to strengthen trust and compliance.

J

JMS LLC

alamo.am

0

Alamo Armenia, operated by JMS LLC, is a medium-sized car rental service provider based in Yerevan, Armenia. The company offers a variety of vehicles including sedans, SUVs, and vans, targeting both business and leisure travelers. Their service model includes convenient online reservations, airport pickup and drop-off, and additional rental options such as one-way and long-term rentals. The website is well-branded, consistent, and provides clear information about services, locations, and policies. Technically, the site is built on modern frameworks like Next.js and React, with integration of Google Tag Manager for analytics. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. Security posture is solid with HTTPS enforced and no visible vulnerabilities, though security headers could be improved. Privacy compliance is adequate with privacy and cookie policies present, but lacks an explicit cookie consent mechanism. WHOIS data confirms domain legitimacy and appropriate age for the business. Overall, the website reflects a professional and trustworthy car rental business with room for enhancements in security policy transparency and privacy compliance.

N

Name.am

name.am

0

The website https://name.am currently exhibits significant security and compliance gaps, particularly in its HTTP security headers, privacy policies, and information security governance. While no critical vulnerabilities were found, multiple high-risk issues expose the business to data breaches, regulatory penalties, and reputational damage. Immediate remediation is essential to strengthen security posture and ensure legal compliance.

The website alfabank.am exhibits significant security deficiencies, particularly in foundational security controls, compliance with data protection regulations, and incident management frameworks. These vulnerabilities pose substantial risks to user data privacy, regulatory compliance, and overall organizational reputation. Immediate remediation is required to strengthen security posture and ensure customer trust.