Security Directory

C

CeMM Research Center for Molecular Medicine of the Austrian Academy of Sciences

cemm.at

0

CeMM is a reputable interdisciplinary research center affiliated with the Austrian Academy of Sciences, focusing on molecular medicine and biomedical research. The website reflects a strong academic and scientific orientation, targeting researchers, students, and collaborators. The technical infrastructure is based on TYPO3 CMS with Apache hosting, and includes privacy-conscious analytics via Matomo. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. The site is well designed, mobile optimized, and rich in content, but security improvements are urgently needed to align with best practices and compliance requirements.

W

Wien Energie GmbH

wienenergie.at

0

Wien Energie GmbH is the largest regional energy supplier in Austria, serving approximately two million people and 230,000 commercial and industrial customers in and around Vienna. The company offers a broad range of energy-related services including electricity, natural gas, district heating, e-mobility, telecommunications, and energy consulting. It operates under the Wiener Stadtwerke Group, reflecting a strong market position and extensive service portfolio. The website is professionally designed with comprehensive content targeting both private and business customers, supported by active social media engagement and clear navigation.

G

Gebauer & Griller

griller.at

0

Gebauer & Griller (GG Group) is a well-established international family-owned manufacturing group specializing in high-quality wires, cables, and wiring systems for automotive and industrial applications. The company positions itself as a leading provider in energy and data transmission sectors, emphasizing customized solutions, innovation, and strong partnerships. The website reflects a professional digital presence with comprehensive content, including corporate videos, social media integration, and detailed product and corporate information. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates third-party services such as Google reCAPTCHA, Google Maps, Vimeo, and Flockler social feeds. However, the website currently lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical security concern. Security headers are partially implemented, but important features like HSTS and OCSP stapling are missing. Privacy compliance is well addressed with clear privacy and cookie policies and a consent mechanism. Contact information is comprehensive, including multiple global office addresses, emails, and phone numbers. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect user data and maintain trust.

M

Merkur Versicherung AG

merkur.at

0

Merkur Versicherung AG is Austria's oldest insurance company, specializing in private health, accident, life, property, and legal protection insurance. Positioned as the second largest private health insurer in Austria, it serves a broad audience including private customers, employees, and businesses. The website demonstrates a mature digital presence with a professional design, clear navigation, and comprehensive content tailored to its target audience. Technically, the site is built on Liferay DXP with React and Clay UI components, but suffers from critical SSL misconfiguration that undermines its security posture. Security headers are well implemented, but the lack of a valid SSL certificate and disabled TLS protocols present significant risks. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is trustworthy and professional but requires urgent remediation of SSL issues to ensure secure user interactions.

BRAUN Maschinenfabrik Gesellschaft m.b.H. is a well-established Austrian manufacturing company specializing in steel cutting and grinding machines, hydraulic steel structures, and decommissioning technologies. Founded in 1848, the company holds a strong market position as a technology leader with a global presence, serving industrial clients primarily in the energy and manufacturing sectors. Their product portfolio includes customized solutions for cutting, grinding, and dismantling applications, supported by in-house engineering and automation capabilities. The website reflects a professional business with clear branding and relevant content targeting industrial customers. Technically, the website runs on an Apache server and uses JavaScript libraries including Google Analytics and Google Maps API. However, the site lacks HTTPS encryption, which is a critical security shortfall. Performance metrics are not available, but the site shows basic mobile optimization and SEO practices. The hosting provider is identified via DNS as esys.at, an Austrian hosting service. From a security perspective, the absence of a valid SSL/TLS certificate and HTTPS is a major vulnerability, exposing users to potential data interception. No advanced security headers or policies are implemented, and there is no visible incident response or vulnerability disclosure information. Privacy compliance is minimal, with no cookie consent mechanism detected, although a basic privacy policy and terms of service are present. Overall, the website demonstrates moderate business credibility and content quality but suffers from significant security and privacy compliance gaps. Strategic improvements in SSL deployment, security headers, and privacy mechanisms are recommended to enhance trust and protect users.

U

UNTHA shredding technology GmbH

untha.com

0

UNTHA shredding technology GmbH is a well-established manufacturer specializing in industrial shredding machines for various waste and recycling applications. With over 50 years of experience and a global presence including subsidiaries in the US, the company offers tailored shredding solutions for materials such as residual wood, metal, plastics, electronic waste, and more. The website reflects a professional and comprehensive digital presence with detailed product information and customer testimonials. Technically, the site uses modern frameworks like Next.js and React, hosted on AWS CloudFront, and integrates privacy and analytics tools such as Cookiebot, Google Tag Manager, and Matomo. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that significantly impacts the site's security posture. Security headers are properly configured, but the lack of TLS protocols and certificate transparency compliance are notable vulnerabilities. Overall, the site is trustworthy and business credible but requires urgent security improvements to protect user data and enhance trust.

L

Lomography

lomography.com

0

Lomography is a well-established analogue photography community and e-commerce platform founded in 1994, offering a wide range of analogue cameras, films, lenses, and educational content. The website demonstrates excellent content quality, user experience, and community engagement, targeting photography enthusiasts globally. Technically, the site uses a modern stack with nginx and Phusion Passenger, and employs Google Tag Manager for analytics and marketing. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate and does not serve content over HTTPS, exposing users to potential interception risks. Privacy compliance is strong with clear policies and cookie consent mechanisms. Overall, the business credibility is high, but the security posture requires urgent improvement to protect users and maintain trust.

W

Würth Österreich

wuerth.at

0

Würth Österreich operates a comprehensive B2B e-commerce platform targeting trade professionals and businesses in Austria. The website offers a wide range of industrial and professional products alongside specialized services such as consulting, digital tools, and engineering support. The company is positioned as a market leader with a strong brand presence and multiple customer engagement channels including social media and mobile apps. Technically, the site uses modern web technologies and a professional CMS, providing a good user experience and mobile optimization. However, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which poses risks to data confidentiality and user trust. Privacy compliance is generally good with accessible policies, but lacks a visible cookie consent mechanism. Overall, the site is professional and credible but requires urgent security improvements to protect users and maintain trust.

D

Dorner Electronic GmbH

dorner.at

0

Dorner Electronic GmbH is a medium-sized Austrian company specializing in technology and software solutions for concrete manufacturers, including ready-mix, precast concrete, dry batch, and bulk material sectors. The company positions itself as a European market leader with a global presence through subsidiaries and partner networks. Their offerings include automation solutions, software products, and apps that digitalize and optimize production processes from order to invoicing. Technically, the website is built on modern frameworks such as Next.js and React, hosted on HostingHub Cloud, and demonstrates good mobile optimization and SEO practices. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy and cookie policies are present and GDPR compliant, and contact information is clearly provided, enhancing business credibility. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

S

StreamUnlimited Engineering GmbH

streamunlimited.com

0

StreamUnlimited Engineering GmbH is a medium-sized technology company based in Austria, specializing in system integration for connected audio, Matter, IoT, and voice assistant technologies. The company offers a comprehensive portfolio of software and hardware solutions, including StreamSDK, StreamAnalytics, Stream2Go, and StreamAMP, targeting brands and ODMs seeking advanced embedded products. With over 120 professionals and a global reach, StreamUnlimited positions itself as a reliable partner for audio streaming and IoT product development. The website is professionally designed, well-structured, and provides detailed information about products, services, and company values. However, the absence of a valid SSL certificate and HTTPS implementation represents a critical security vulnerability that undermines user trust and data protection. The site includes GDPR-compliant privacy and cookie policies with consent mechanisms, reflecting good privacy practices. Overall, the company demonstrates strong business credibility and digital maturity but must urgently address its security posture to ensure safe and trusted user interactions.

P

Pers-Con

pers-con.at

0

Pers-Con is a specialized recruitment and personal consulting firm focusing on sectors such as automotive, IT, pharma, waste management, insurance, finance, law, and construction. The company operates primarily in Austria and neighboring countries, offering services including direct candidate approach, media-supported search, and social media utilization. The website reflects a professional business with clear service offerings and team member contacts, targeting both companies and job seekers. Technically, the site is built on Joomla CMS with common web technologies like jQuery and Bootstrap, but lacks modern performance optimizations and mobile responsiveness is basic. Critically, the absence of HTTPS and a valid SSL certificate severely impacts security posture and trustworthiness. Cookie consent and privacy policies are implemented, indicating GDPR awareness. Overall, the site is functional but requires urgent security upgrades to meet modern standards.

E

Eurocom Translation Services GmbH

eurocom.at

0

Eurocom Translation Services GmbH is a well-established B2B translation and language service provider based in Austria, with over 30 years of experience and a strong market presence in the DACH region. The company offers a comprehensive suite of services including technical and marketing translations, terminology management, quality management, and language managed services such as Global SEO and machine translation. Eurocom is part of the Kaleidoscope Group, which enhances its technological capabilities and market reach. The website reflects a professional and content-rich digital presence, targeting export-oriented businesses seeking multilingual content solutions. Technically, the site is built on WordPress with modern plugins and tools, but suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. The security posture is basic, lacking important security headers and DNS security features. Overall, Eurocom demonstrates strong business credibility and digital maturity but must urgently address its SSL/TLS configuration to improve security and trustworthiness.

M

Montanuniversität Leoben

mu-leoben.at

0

Montanuniversität Leoben is a well-established technical university in Austria specializing in sustainable technologies and circular engineering. The website reflects a strong academic and research focus with comprehensive educational offerings and active international partnerships. Technically, the site uses TYPO3 CMS with modern frontend libraries but lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS and incomplete security headers, though privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the site is professional and trustworthy but requires urgent improvements in security infrastructure to protect user data and enhance trust.

V

Verticalfarminstitute

verticalfarminstitute.org

0

The Vertical Farm Institute is a specialized research and consulting organization focused on advancing urban agriculture and vertical farming. Established in 2013 and based in Vienna, Austria, it collaborates on international projects such as Horizon 2020's euPOLIS. The website presents a professional digital presence with rich content including project descriptions, journals, and service offerings targeted at real estate developers, architects, and sustainability-focused stakeholders. Technically, the site is built on WordPress with modern plugins and SEO tools, but lacks a valid SSL certificate, which is a significant security concern. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site demonstrates moderate maturity and credibility but requires urgent improvements in security and privacy practices.

B

BHDT GmbH

bhdt.at

0

BHDT GmbH is a specialist company focused on high pressure equipment and components for the chemical and petrochemical industries, operating primarily in Austria. The company is part of the Dr. Aichhorn Group and offers engineering, design, and production services. The website reflects a medium-sized B2B manufacturing business with a professional online presence and clear business segmentation. Technically, the site is built on WordPress with common plugins for SEO, multilingual support, and marketing analytics. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security gap, exposing users to potential risks. Privacy policies are present but lack a cookie consent mechanism, which may affect GDPR compliance. Overall, the site is functional and professional but requires urgent security improvements.

A

AICHELIN Holding GmbH

aichelin.com

0

AICHELIN Holding GmbH is a leading industrial manufacturing company specializing in heat treatment solutions for metallic parts and components. The company offers a broad portfolio including industrial furnace systems, industrial burner systems, vacuum furnaces, and battery materials, supported by comprehensive global service offerings. Their website reflects a professional B2B focus targeting industrial clients and equipment manufacturers. Technically, the site uses modern JavaScript libraries, Bootstrap framework, and integrates consent management and Google Tag Manager for analytics and privacy compliance. However, the SSL/TLS configuration is critically flawed with an invalid certificate and no enabled TLS protocols, posing a significant security risk. Security headers are well implemented, but the lack of valid HTTPS severely impacts the security posture. Privacy policies and cookie consent mechanisms are present and GDPR compliant. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the website is content-rich and professionally presented but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions and trust.

B

bfi Steiermark

bfi-stmk.at

0

bfi Steiermark is a large, well-established adult education institution based in Austria, offering a wide range of courses, seminars, and certifications across multiple professional fields. The website targets adult learners and professionals in the Steiermark region, providing a comprehensive educational service portfolio. Technically, the site is built on the Contao CMS platform and uses common web technologies such as jQuery and Less CSS. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security vulnerability. Security headers are implemented, but the absence of HTTPS severely impacts the overall security posture. The site includes GDPR-compliant privacy and cookie policies with a consent mechanism, and it maintains active social media channels for engagement. Overall, while the business and content quality are good, the technical and security shortcomings require urgent attention to protect user data and improve trust.

N

Namirial GmbH

xyzmo.com

0

Namirial GmbH operates in the digital transaction management and e-signature software sector, providing omni-channel solutions that enable businesses to conduct secure digital transactions anytime and anywhere. The company is recognized as a leader in its market segment, offering qualified trust services compliant with eIDAS regulations, and supports both SaaS and on-premise deployments. Their target audience primarily consists of businesses seeking digital transformation in document signing and workflow management. Technically, the website uses modern web technologies such as jQuery and integrates third-party services for fonts, translation, and marketing analytics. However, the absence of a valid SSL certificate and HTTPS severely undermines the security posture, despite the presence of several security headers and policies. The domain is mature and consistent with the company's history, but the imminent expiry poses a risk if not renewed promptly. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

W

Wienerberger AG

wienerberger.com

0

Wienerberger AG is a leading global manufacturer and supplier of building materials, specializing in bricks, clay roof tiles, pipe systems, and surface pavings. The company holds a strong market position as the world's largest brick producer and a market leader in Europe for clay roof tiles and infrastructure solutions. The website reflects a mature and professional digital presence with comprehensive content targeting investors, customers, and job seekers. Technically, the site is built on Adobe Experience Manager and uses modern web technologies, but critically lacks HTTPS/SSL encryption, exposing users to security risks. Security headers are partially implemented, but the absence of SSL/TLS significantly lowers the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high business credibility and content quality but requires urgent security improvements to protect user data and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

FH Oberösterreich

fh-ooe.at

0

FH Oberösterreich (FH OÖ) is a leading university of applied sciences in Austria, offering a wide range of bachelor and master degree programs across multiple campuses. The institution emphasizes praxis-oriented education, personal consultation, and maintains strong international partnerships. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the site uses modern frameworks such as Vue.js and Craft CMS, and integrates various analytics and marketing tools with user consent mechanisms. However, the security posture is weakened by the absence of a valid SSL certificate and lack of security headers, exposing users to potential risks. Privacy compliance is well addressed with detailed policies and cookie consent. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS configuration to ensure secure communications.

W

WiLLTRON Technologies GmbH

willtron.at

0

WiLLTRON Technologies GmbH is a specialized Austrian company founded in 2005, focusing on testing, measuring, monitoring, and analyzing wired and wireless IP networks and communication systems. Their offerings include a range of hardware and software solutions, seminars, and webinars targeting network professionals and communication system installers. The company maintains strategic partnerships with international manufacturers, positioning itself as a niche provider in the telecommunications technology sector. The website reflects a professional and consistent brand image with clear contact information and service descriptions. Technically, the site is built on TYPO3 CMS with common frontend frameworks and libraries, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS exposes users to potential data interception risks and reduces trustworthiness. Privacy and cookie policies are present with consent mechanisms, but no terms of service or explicit security policies are found. Social media presence is moderate, including Facebook, LinkedIn, and Google Plus (deprecated). Overall, the website is functional and informative but requires urgent security improvements to meet modern standards.

G

Getzner Textil AG

getzner.at

0

Getzner Textil AG is a well-established Austrian textile manufacturer with a history dating back to 1818. The company specializes in high-quality fashion fabrics, corporate fashion textiles, personal protective equipment, sports equipment textiles, and industrial textiles, emphasizing innovation and sustainability. Their market position is strong within Europe, serving a diverse clientele including fashion designers, garment makers, and industrial users. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and Matomo Analytics, hosted behind Fastly CDN and Varnish cache. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts security posture. Privacy and cookie policies are well implemented with consent mechanisms, and the company maintains active social media channels. Overall, the domain registration and DNS data align with the company's claims, indicating legitimacy and trustworthiness.

U

UBIMET

ubimet.com

0

UBIMET is a mature meteorological services company founded in 2008, specializing in providing high-precision, tailored weather data and integrated systems to businesses across sectors such as energy, transportation, insurance, retail, and media. The company leverages proprietary AI-driven weather models combining multiple data sources to deliver scalable and precise weather information. Their market position is strong, supported by a consistent brand, client testimonials, and certifications like ISO 27001. Technically, the website is built on WordPress with modern plugins and lazy loading for images, but suffers from critical security shortcomings including the absence of a valid SSL certificate and disabled TLS protocols, which significantly impact the security posture. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site presents professional content and good user experience but requires urgent security improvements to protect user data and enhance trust.

C

CompaxDigital Software Development GmbH

compax.at

0

CompaxDigital Software Development GmbH is a technology company specializing in cloud-native Business Support Systems (BSS) and Operations Support Systems (OSS) software for telecommunications and related industries. The company offers a SaaS platform with agile delivery and operational support, targeting telecom service providers, MVNOs, ISPs, and enterprises requiring digital transformation solutions. Their market position is supported by partnerships with major telecom operators and industry memberships such as TM Forum. The website is professionally designed with rich content, customer logos, and whitepapers, reflecting a mature digital presence. Technically, the website is built on WordPress using the Divi theme and several plugins for enhanced functionality, hosted on WP Engine with Cloudflare CDN. However, performance is slow, and accessibility is basic. SEO is adequately implemented with proper meta tags and structured data. Mobile optimization is good. Security posture is weak due to the absence of a valid SSL certificate and HTTPS enforcement, lack of modern TLS protocols, and missing security headers like HSTS. No cookie consent mechanism is present despite the use of tracking scripts such as Google Analytics and HubSpot. No explicit security policies or incident response contacts are found. Overall, the website demonstrates strong business credibility and content quality but suffers from critical security shortcomings that should be addressed promptly to protect user data and improve trustworthiness.

T

TeDaLoS GmbH

tedalos.net

0

TeDaLoS GmbH is a small Austrian technology company specializing in cloud-based smart inventory monitoring solutions leveraging IoT devices. Their SaaS platform targets end users, technical wholesalers, and sensor manufacturers, providing real-time stock and consumption data to optimize supply chain and warehouse management. The website is professionally designed, content-rich, and consistent with the company's business focus. Technically, the site runs on WordPress with modern plugins for SEO, spam protection, and cookie consent, but lacks a valid SSL certificate and HTTPS support, which significantly impacts security posture. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the business appears legitimate and trustworthy, but the lack of HTTPS is a critical security gap that should be addressed promptly.

A

agru Kunststofftechnik GmbH

agru.at

0

AGRU Kunststofftechnik GmbH is a well-established Austrian manufacturer specializing in high-quality plastic piping systems and related products for industrial sectors such as energy, construction, and infrastructure. The company has a strong market position as a single-source supplier with a focus on innovation, quality, and employee orientation. Their website reflects a professional business presence with comprehensive product and market information, supported by active social media channels and a GDPR-compliant privacy framework. Technically, the site is built on TYPO3 CMS with modern frontend technologies but suffers from a critical lack of HTTPS, severely impacting security and trust. The absence of SSL/TLS encryption exposes users to risks and reduces the overall security posture. Privacy compliance is well addressed through cookie consent and a detailed privacy policy. However, direct contact information like emails or phone numbers is not explicitly provided, relying mainly on forms. Overall, the site is functional and informative but requires urgent security improvements to meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Lenze is a large manufacturing and technology company specializing in automation solutions for industrial machinery and systems. Their website targets industrial manufacturers and automation professionals, offering a broad portfolio of products, software, and services including training and aftersales support. The company maintains a strong global presence with localized content for Austria and other regions. Technically, the website is built on TYPO3 CMS with modern frontend technologies and good SEO and accessibility practices. However, a critical security weakness is the absence of a valid SSL certificate, resulting in no HTTPS support despite HSTS headers being present. Security headers and content security policies are well implemented, but the lack of SSL significantly reduces the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Contact information is primarily via contact forms and social media channels, with no explicit emails or phone numbers visible. Overall, the website is professional and trustworthy but requires urgent SSL implementation to improve security and user trust.

P

Palmers Textil AG

palmers.at

0

Palmers Textil AG operates a well-branded e-commerce website focused on retailing lingerie, nightwear, and fashion apparel primarily targeting German-speaking European customers. The site leverages modern web technologies including Vue Storefront 2 and Magento backend, supported by AWS CloudFront CDN and various marketing and analytics tools such as Google Analytics and Facebook Pixel. Despite a professional presentation and comprehensive privacy and cookie policies, the website suffers from a critical security deficiency: the absence of a valid SSL/TLS certificate and HTTPS support, exposing users to potential data interception risks. Security headers are implemented but cannot compensate for the lack of encryption. The domain registration data aligns well with the business claims, indicating legitimacy and consistency. Overall, the website demonstrates good digital maturity but requires urgent security improvements to protect user data and enhance trust.

Software Competence Center Hagenberg (SCCH) is a medium-sized research and development center based in Austria, specializing in software competence and computational intelligence for industrial applications. The organization maintains a strong market position with national and international partnerships, offering services in data science, software science, project collaboration, consulting, and training. The website content is professionally presented in German, targeting industry professionals, researchers, partners, and potential employees. The business model focuses on research and innovation in technology for industry advancement. Technically, the website is built on the Contao Open Source CMS platform, utilizing Apache server technology and modern JavaScript libraries such as jQuery and Slick Carousel. Hosting is managed via Azure DNS services. While the website demonstrates good mobile optimization and basic SEO practices, performance metrics indicate slow loading times. Accessibility features are basic but present. From a security perspective, the site implements several important HTTP security headers including Content Security Policy, X-Frame-Options, and X-XSS-Protection. However, a critical weakness is the invalid SSL certificate and lack of proper HTTPS support, which significantly undermines the security posture. No advanced incident response or security policy documentation is found on the site. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the website is trustworthy and professionally maintained but requires urgent remediation of SSL/TLS issues to ensure secure communications and improve the security score. Strategic recommendations include fixing the SSL certificate, enabling modern TLS protocols, and enhancing performance and accessibility to strengthen the digital presence and security posture.

F

Fraunhofer Austria Research GmbH

fraunhofer.at

0

Fraunhofer Austria Research GmbH is a well-established applied research partner for the Austrian industry, specializing in digital networking, automation, machine vision, artificial intelligence, factory planning, production management, supply chain management, and digital logistics. The company operates as part of the larger Fraunhofer-Gesellschaft, Europe's largest applied research organization, positioning itself as a key player in Industry 4.0 within Austria. Their business model focuses on applied research and development through industry collaborations and publicly funded projects. Technically, the website is built on an Apache server with Adobe Experience Manager CMS, utilizing RequireJS and standard web technologies. While the site is mobile-optimized and well-structured with good SEO practices, performance data is limited and suggests slow loading. Accessibility is basic but functional. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability. Although some security headers like HSTS, X-Content-Type-Options, and X-XSS-Protection are present, the absence of HTTPS severely undermines the security posture. No incident response or vulnerability disclosure policies are evident, and cookie consent mechanisms are missing, indicating partial privacy compliance. Overall, the website is professional and credible with clear business information and social media presence. However, the critical lack of HTTPS and incomplete privacy mechanisms present significant risks. Strategic improvements in SSL deployment, security policies, and privacy compliance are recommended to enhance trust and security.

P

ProSiebenSat.1 PULS 4

atv.at

0

ATV.at is the official website of the Austrian TV channel ATV, operated under the parent company ProSiebenSat.1 PULS 4. The site offers streaming of live TV, video on demand, and detailed program guides, targeting German-speaking audiences interested in entertainment and reality TV. The business model is primarily advertising-driven, leveraging partnerships with streaming platforms like JOYN to deliver content. The website demonstrates a high level of digital maturity with modern web technologies such as React and Next.js, providing a responsive and user-friendly experience across devices. However, the site currently lacks a valid SSL certificate, which is a critical security gap. While privacy and legal policies are comprehensive and GDPR compliant, the absence of HTTPS and security headers reduces the overall security posture. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Strategic improvements in SSL implementation and security headers are recommended to enhance user trust and compliance.

J

Josef Manner & Comp AG

manner.com

0

Josef Manner & Comp AG operates the website manner.com, a well-established Austrian confectionery brand specializing in Viennese wafer specialties since 1890. The website showcases a comprehensive product range, including wafers, baking products, gingerbread, and merchandise, targeting consumers interested in traditional confectionery. The brand maintains a consistent and professional online presence with rich content, social media integration, and e-commerce capabilities. Technically, the site uses modern technologies such as Vue.js, Algolia search, and Cookiebot for consent management, hosted likely on DigitalOcean. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that undermines user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website is professional and credible but requires urgent security improvements to meet modern standards.

M

Moody’s Analytics Austria GmbH

kompany.com

0

kompany is a specialized provider of real-time official company information and compliance solutions, operating as a Moody’s Analytics Austria GmbH subsidiary. The company offers services such as KYC, KYB, AML, and UBO compliance tools, credit and register reports, and entity verification across over 115 million companies globally. Their market position is strong due to Moody’s backing, targeting businesses requiring robust compliance and risk management data. Technically, the website uses modern JavaScript frameworks, Google Analytics 4, and Cloudflare for hosting and CDN services, but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and TLS protocols significantly reduces the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, kompany presents a professional and trustworthy business front with room for critical security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Z

Zeus Petruzalek

petruzalek.com

0

Zeus Petruzalek is a well-established B2B manufacturer and distributor specializing in food packaging products and packaging machines. As part of the Zeus Group, it operates across multiple countries with a strong market presence in the manufacturing sector. The website demonstrates a professional and comprehensive digital presence with multilingual support and extensive product catalogs. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and analytics tools, though performance metrics are not optimal. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, exposing the site to risks and reducing trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is credible and professional but requires urgent security improvements to protect user data and enhance trust.

D

DR YIELD software & solutions GmbH

dryield.com

0

DR YIELD software & solutions GmbH is a mature technology company specializing in smart data analysis and AI-driven yield analytics for the semiconductor industry. With over 20 years of experience, the company offers the YieldWatchDog platform and related modules to help semiconductor manufacturers improve product quality, reduce costs, and accelerate yield ramp. The website reflects a professional B2B software provider with a global customer base and strong industry trust signals. Technically, the site is built on WordPress with Elementor and leverages Cloudflare for CDN and caching, alongside Matomo for analytics. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, leaving the site without HTTPS protection. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is content-rich and professionally presented but requires urgent security improvements to protect user data and enhance trust.

T

TCG UNITECH GmbH

unitech.at

0

TCG UNITECH GmbH is a well-established manufacturing company based in Austria, specializing in lightweight metal and plastic components for the automotive industry. The company operates as part of the Gnutti Carlo Group and offers a range of services including die casting, injection molding, and engineering solutions. Their website reflects a professional corporate presence with detailed information about their products, services, and corporate values. Technically, the site is built on WordPress with modern SEO practices and multilingual support, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS impacts the overall security posture and trustworthiness of the site. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

G

GLOBAL HYDRO Energy GmbH

global-hydro.eu

0

GLOBAL HYDRO Energy GmbH is a specialized technology leader in the small hydropower sector, offering comprehensive turnkey solutions including design, engineering, digital plant control, revitalization, and lifetime service. The company operates globally with a strong Austrian headquarters and emphasizes sustainable energy solutions. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site uses Pimcore CMS on an Apache server and integrates Cookiebot for cookie consent and Google reCAPTCHA for form security. However, the absence of a valid SSL certificate and HTTPS support significantly weakens the security posture. Security headers are partially implemented but modern TLS protocols and cipher suites are missing, exposing the site to potential risks. Privacy compliance is supported by a clear privacy policy and cookie consent mechanism. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

Binder Grösswang Rechtsanwälte GmbH is a leading Austrian law firm with over 60 years of experience providing comprehensive legal services to national and international clients. The firm holds a strong market position supported by multiple prestigious awards such as 'Law Firm of the Year - Austria' and consistent Tier 1 rankings. Their service offerings span various legal specialties and industries, targeting businesses and individuals seeking expert legal counsel. Technically, the website is built on TYPO3 CMS with modern frontend technologies and demonstrates good mobile optimization and accessibility. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

M

MM Group

mm-packaging.com

0

MM Packaging, a division of MM Group, is a leading global manufacturer of consumer packaging solutions specializing in pharmaceuticals, food, beauty, and consumer goods sectors. The company operates a network of 56 packaging sites worldwide, emphasizing innovation and sustainability in its product offerings. The website reflects a mature digital presence with comprehensive content, multilingual support, and strong branding consistent with an enterprise-level organization. Technically, the site is built on WordPress with modern marketing and analytics integrations, but suffers from a critical lack of a valid SSL certificate and modern TLS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility and content quality are high, but the security deficiencies pose a risk to user trust and data protection.

T

The United Nations in Vienna

unvienna.org

0

The United Nations in Vienna website serves as the official digital presence of the UN's Vienna-based offices and agencies. It provides comprehensive information about the UN family in Vienna, their initiatives, sustainable development goals, and visitor information. The site targets a broad audience including diplomats, researchers, media, and the general public interested in UN activities. The business model is informational and public service-oriented, reflecting the UN's governmental and non-profit nature. The website is well-branded, consistent, and authoritative in its domain space. Technically, the site uses a combination of AngularJS and React frameworks, served via Apache, with integration of Google Tag Manager for analytics. The site is mobile optimized and has good navigation and content quality. However, performance metrics are unavailable, and accessibility is basic. SEO is moderately implemented with proper meta tags and Open Graph data. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. While some security headers are present, the absence of TLS protocols, cipher suites, DMARC, DNSSEC, and CAA records indicates a weak security posture. No incident response or vulnerability disclosure information is publicly available. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Overall, the website is trustworthy and credible given its UN affiliation and mature domain. However, the lack of HTTPS and modern security practices significantly lowers its security score and poses risks to users. Strategic improvements in SSL deployment, email security, and privacy compliance are recommended to enhance trust and security.

S

Semperit AG Holding

semperitgroup.com

0

Semperit AG Holding is a well-established global manufacturer specializing in industrial polymer products and solutions, with a history dating back to 1824. The company operates multiple business divisions including hoses, profiles, form, conveyor belts, and Rico products, targeting industrial clients and investors. The website reflects a mature and professional digital presence, leveraging TYPO3 CMS and modern web design principles to provide a rich user experience. However, the absence of HTTPS and valid SSL certificates represents a significant security vulnerability that undermines user trust and data protection. While privacy and cookie policies are comprehensive and GDPR compliant, the lack of explicit security and incident response information suggests room for improvement in transparency and preparedness. Overall, the domain registration and WHOIS data confirm the legitimacy and maturity of the business, supporting a high trustworthiness rating despite technical security shortcomings.

Flughafen Wien AG operates Vienna International Airport, providing a wide range of passenger services including flight information, parking, lounges, VIP services, and retail. The website targets passengers, business partners, and visitors, positioning itself as a leading airport in Austria with comprehensive service offerings. The digital infrastructure uses modern frameworks like Bootstrap and integrates privacy-conscious analytics via Matomo. However, the absence of a valid SSL certificate and HTTPS significantly undermines the security posture. Security headers are partially implemented, but critical improvements are needed to secure user data and communications. The domain is mature and legitimately registered, consistent with the airport's long-standing presence. Overall, the website is professional and content-rich but requires urgent security enhancements.

R

Reppublika Research

mindtake.com

0

Reppublika Research is a well-established full-service market research institute specializing in data-driven media and consumer research across Germany, Austria, and the CEE region. With over two decades of experience, the company offers comprehensive quantitative, qualitative, and behavioral research services, supported by proprietary panels and advanced technical capabilities. Their client portfolio includes major corporations such as Google, IKEA, and Allianz, underscoring their strong market position and credibility. Technically, the website is built on the Wix platform, leveraging a modern tech stack including React 18 and various Wix apps, ensuring a professional and content-rich online presence. However, the security posture is currently limited by the absence of a valid SSL certificate and proper HTTPS configuration, which poses a significant risk and impacts user trust. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the company demonstrates strong business credibility and digital maturity but should prioritize improving its security infrastructure to enhance trust and protect user data.

I

International Jet Management GmbH

ijm.at

0

International Jet Management GmbH is a specialized aviation management company based in Austria, providing aircraft management, charter services, and fleet operations primarily targeting business aviation clients. The company holds recognized certifications such as IS-BAO and has approvals from aviation authorities, positioning it as a credible player in the transportation sector. The website reflects a professional business presence with clear service offerings and contact information. Technically, the website is built on WordPress with common libraries like jQuery and Modernizr, and uses Yoast SEO for optimization. However, the site lacks HTTPS, which is a significant security concern. The absence of SSL/TLS encryption exposes users to potential data interception risks. Security headers are minimal, and no advanced security policies or incident response contacts are published. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is implemented. Overall, the site demonstrates moderate digital maturity but requires urgent improvements in security posture to protect user data and enhance trust.

WEB Windenergie AG is a large Austrian renewable energy company specializing in wind, photovoltaic, and hydropower plants. The company emphasizes citizen participation and operates across eight countries on two continents. Their business model focuses on green energy production and investment opportunities, positioning them as a leading player in Austria's renewable energy sector. The website is professionally designed with comprehensive content targeting private customers, business clients, municipalities, and investors. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and responsive design, but lacks HTTPS, which is a critical security flaw. Security headers are partially implemented, but the absence of SSL/TLS severely impacts the security posture. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Contact information and trust signals such as certifications and social media presence enhance business credibility. Overall, the site is functional and professional but urgently requires HTTPS implementation to improve security and trust.

T

Two Pi GmbH

two-pi.com

0

Two Pi GmbH is a specialized provider of signal processing intellectual property and firmware solutions for hearing aids and OTC hearing healthcare markets. The company offers audiology algorithm libraries, firmware for semiconductor platforms, and advisory services, with products tested in multiple medical and consumer product families. The website reflects a professional business presence targeting hearing healthcare companies and technology providers. Technically, the site is built on WordPress with standard plugins and uses Google Analytics for tracking. However, the absence of HTTPS and security headers significantly undermines the security posture. Privacy compliance is lacking, with no visible privacy or cookie policies or consent mechanisms. Business credibility is supported by consistent company information and professional content, but the lack of contact phone numbers and social media presence limits engagement channels. Overall, the site is functional and informative but requires urgent security and privacy improvements.

B

BWT Holding GmbH

christaqua.com

0

BWT Holding GmbH operates a professional and content-rich website focused on providing ultra-pure water solutions for the pharmaceutical, biotech, and cosmetics industries. The company positions itself as a market leader with a comprehensive product and service portfolio including purified water generation, water for injection, pure steam, and automation solutions. The website demonstrates strong branding consistency, excellent content quality, and clear navigation targeting a B2B audience in healthcare. Technically, the site uses Microsoft IIS, JavaScript libraries, Google Tag Manager, and Cookiebot for consent management, with Sitecore CMS inferred. However, the site lacks a valid SSL certificate and HTTPS support, which is a critical security vulnerability. Privacy policies and cookie consent mechanisms are well implemented, supporting GDPR compliance. Contact information is primarily via a contact form, with no explicit emails or phone numbers found. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and ensure secure communications.