Security Directory

E

ENI

eni.com

0

Eni is a large, established integrated energy company headquartered in Italy with a strong global presence and diversified energy portfolio including oil & gas, renewables, and bioenergy. The website reflects a mature digital presence with comprehensive content covering corporate governance, sustainability, investor relations, and career opportunities. Technically, the site uses modern frameworks like Bootstrap and jQuery, hosted on Akamai CDN, and employs Adobe Helix for content management. However, the security posture is weakened by the absence of a valid SSL certificate and HTTPS support, which is a critical vulnerability. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

A

ACN Opportunity, LLC

myacn.com

0

ACN Opportunity, LLC operates a mature and established website offering essential services such as internet, energy, and wireless, combined with a home-based business opportunity model. The company targets individuals interested in essential services and entrepreneurial ventures, positioning itself as a trusted provider with strong industry memberships and a broad social media presence. Technically, the website leverages modern frontend technologies including Joomla CMS, Bootstrap, jQuery, and Swiper.js, hosted on AWS infrastructure with CloudFront CDN. The site is mobile optimized and SEO friendly, though performance metrics are unavailable. Security posture is weak due to the absence of a valid SSL certificate and HTTPS enforcement, despite the presence of several security headers. Privacy compliance is strong with comprehensive policies and a OneTrust cookie consent mechanism. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect user data and enhance trust.

H

HAUSER GmbH

hauser.com

0

HAUSER GmbH is a well-established European provider specializing in refrigeration furniture and cooling technology, serving international clients primarily in the food retail and industrial sectors. The company offers comprehensive solutions including innovative, energy-efficient cooling systems, project management, and lifecycle services. With approximately 75 years of experience, HAUSER holds a strong market position as a trusted B2B Komplettanbieter in Austria and Europe. The website is professionally designed, content-rich, and targets business customers seeking high-quality refrigeration solutions. Technically, the website is built on Drupal 10 and employs modern web technologies including Matomo for analytics and TRUENDO for privacy management. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a significant security and trust concern. Performance data is missing, and DNS records are incomplete, suggesting possible use of CDN or proxy services. The site is mobile-optimized and accessible with good SEO practices. From a security perspective, while several security headers are implemented, the absence of HTTPS and TLS protocols severely undermines the security posture. No explicit security policies or incident response contacts are provided, and no vulnerability disclosure mechanisms are found. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, HAUSER GmbH presents a credible and professional business online presence but must urgently address SSL/TLS implementation to improve security and trust. Strategic recommendations include securing the website with valid certificates, enabling modern TLS protocols, and enhancing security transparency to align with best practices and regulatory requirements.

W

Wien Energie GmbH

wienenergie.at

0

Wien Energie GmbH is the largest regional energy supplier in Austria, serving approximately two million people and 230,000 commercial and industrial customers in and around Vienna. The company offers a broad range of energy-related services including electricity, natural gas, district heating, e-mobility, telecommunications, and energy consulting. It operates under the Wiener Stadtwerke Group, reflecting a strong market position and extensive service portfolio. The website is professionally designed with comprehensive content targeting both private and business customers, supported by active social media engagement and clear navigation.

Bilfinger SE is an established international industrial services provider specializing in maintenance, expansion, and operation of industrial plants primarily in the energy, chemicals, pharma, and oil & gas sectors. The company operates across Europe, North America, and the Middle East, offering a comprehensive service portfolio including consulting, engineering, manufacturing, assembly, maintenance, and digital applications. The website reflects a mature digital presence built on TYPO3 CMS with a professional design and multilingual support targeting industrial clients globally. Technically, the site uses Apache and PHP 7.4 with various JavaScript libraries and integrates Matomo for analytics and Consentmanager.net for cookie consent management. Security posture is moderate; while security headers and a content security policy are present, the SSL/TLS configuration is currently invalid or missing, which is a critical issue. No WAF or blocking mechanisms are detected, and the site is fully accessible. The domain registration data is consistent with the business claims, showing a long-established domain without privacy protection, supporting legitimacy. Overall, the site is professional and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

B

BHDT GmbH

bhdt.at

0

BHDT GmbH is a specialist company focused on high pressure equipment and components for the chemical and petrochemical industries, operating primarily in Austria. The company is part of the Dr. Aichhorn Group and offers engineering, design, and production services. The website reflects a medium-sized B2B manufacturing business with a professional online presence and clear business segmentation. Technically, the site is built on WordPress with common plugins for SEO, multilingual support, and marketing analytics. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security gap, exposing users to potential risks. Privacy policies are present but lack a cookie consent mechanism, which may affect GDPR compliance. Overall, the site is functional and professional but requires urgent security improvements.

K

Kreutzpointner

kreutzpointner.de

0

Kreutzpointner is a well-established family-owned company specializing in electrical and information technology solutions, with over 100 years of experience and operations in Germany, Austria, and Romania. The company offers a comprehensive portfolio including electrical installations, renewable energy, software solutions, and full-service offerings such as consulting, engineering, execution, and maintenance. Their market position is strong with multiple subsidiaries and a broad service spectrum targeting industrial, commercial, and public sectors. Technically, the website is built on WordPress with modern plugins and frameworks, providing good SEO and user experience. However, the security posture is weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses significant risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility is high, supported by certifications and detailed company information.

H

Hotwell US

hotwellus.com

0

Hotwell US is a specialized company focused on developing advanced wireline well logging tools, systems, and software primarily serving the energy sector. The business operates a WordPress-based website that provides basic information about its products and services but lacks comprehensive content and contact details. The company appears to be a small-sized entity with a mature domain age of 18 years, indicating an established presence in its niche market. Technically, the website relies on older versions of WordPress and jQuery, with Cloudflare providing DNS and hosting services. SEO is moderately optimized using Yoast SEO, but mobile optimization and accessibility are basic. Security posture is weak due to the absence of HTTPS/SSL, lack of security headers, and missing privacy and cookie policies. Google Analytics is used for user tracking without any consent mechanism, raising privacy compliance concerns. Overall, the website presents a low trustworthiness level and requires significant improvements in security and compliance to meet modern standards.

U

UBIMET

ubimet.com

0

UBIMET is a mature meteorological services company founded in 2008, specializing in providing high-precision, tailored weather data and integrated systems to businesses across sectors such as energy, transportation, insurance, retail, and media. The company leverages proprietary AI-driven weather models combining multiple data sources to deliver scalable and precise weather information. Their market position is strong, supported by a consistent brand, client testimonials, and certifications like ISO 27001. Technically, the website is built on WordPress with modern plugins and lazy loading for images, but suffers from critical security shortcomings including the absence of a valid SSL certificate and disabled TLS protocols, which significantly impact the security posture. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site presents professional content and good user experience but requires urgent security improvements to protect user data and enhance trust.

Schwarz & Schmidhofer Industrieanlagenbau GmbH is a medium-sized German company specializing in industrial plant construction, including piping, steel construction, and industrial assembly, with over 35 years of experience. The company serves leading clients in the chemical, petrochemical, energy, and environmental technology sectors, positioning itself as a reliable and professional partner offering precise and modern technical solutions. The website is built on WordPress with the Divi theme and supports multilingual content via Weglot, indicating a moderate level of digital maturity. However, the absence of HTTPS and a valid SSL certificate represents a significant security vulnerability, exposing users to potential data interception and undermining trust. The site lacks cookie consent mechanisms and explicit contact details, which impacts privacy compliance and user accessibility. Overall, while the business content and presentation are professional and relevant, the technical and security posture requires urgent improvement to meet modern standards and regulatory requirements.

M

Mersen

mersen.com

0

Mersen is a global industrial company specializing in electrical power and advanced materials, serving high-tech industries with customized solutions and key products. The company operates worldwide with over 50 industrial sites and 21 R&D centers across 33 countries, positioning itself as a leader in its sector. The website reflects a mature digital presence with comprehensive content, multi-language support, and active social media engagement. Technically, the site is built on Drupal 10 and leverages modern CDN and observability tools, but lacks a valid SSL certificate and modern TLS support, which is a critical security gap. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit security policy or incident response information is provided. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect users and maintain credibility.

G

GLOBAL HYDRO Energy GmbH

global-hydro.eu

0

GLOBAL HYDRO Energy GmbH is a specialized technology leader in the small hydropower sector, offering comprehensive turnkey solutions including design, engineering, digital plant control, revitalization, and lifetime service. The company operates globally with a strong Austrian headquarters and emphasizes sustainable energy solutions. The website reflects a professional and consistent brand image with clear business information and contact details. Technically, the site uses Pimcore CMS on an Apache server and integrates Cookiebot for cookie consent and Google reCAPTCHA for form security. However, the absence of a valid SSL certificate and HTTPS support significantly weakens the security posture. Security headers are partially implemented but modern TLS protocols and cipher suites are missing, exposing the site to potential risks. Privacy compliance is supported by a clear privacy policy and cookie consent mechanism. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

WEB Windenergie AG is a large Austrian renewable energy company specializing in wind, photovoltaic, and hydropower plants. The company emphasizes citizen participation and operates across eight countries on two continents. Their business model focuses on green energy production and investment opportunities, positioning them as a leading player in Austria's renewable energy sector. The website is professionally designed with comprehensive content targeting private customers, business clients, municipalities, and investors. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and responsive design, but lacks HTTPS, which is a critical security flaw. Security headers are partially implemented, but the absence of SSL/TLS severely impacts the security posture. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Contact information and trust signals such as certifications and social media presence enhance business credibility. Overall, the site is functional and professional but urgently requires HTTPS implementation to improve security and trust.

T

Tranter Inc.

tranter.com

0

Tranter Inc. is a global manufacturer specializing in advanced gasketed and welded plate heat exchangers, serving diverse industrial sectors such as energy, marine, HVAC, and manufacturing. The company emphasizes innovation, quality, and sustainability, supported by a global service network and a strong digital presence powered by HubSpot CMS and marketing tools. Their website offers comprehensive product information, customer stories, and resource materials tailored to industrial clients worldwide. Technically, the website is built on a modern CMS platform with integration of analytics and marketing technologies like Google Tag Manager and Cookiebot for privacy compliance. The site is well-structured, mobile-optimized, and professionally designed, providing a good user experience and clear navigation. However, the security posture is critically weak due to the absence of a valid SSL certificate and lack of HTTPS support, exposing visitors to potential risks. While security headers are partially implemented, the lack of TLS protocols and cipher suites significantly undermines the site's security. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site presents a professional and credible business front but requires urgent remediation of its SSL/TLS configuration to ensure secure communications and protect user data. Strategic improvements in security and incident response readiness are recommended to enhance trust and compliance.

Salzburg AG operates a comprehensive utility and telecommunications service platform primarily serving the Salzburg region in Austria. The company offers high-speed internet services under the CableLink brand, including fiber and wireless options, alongside TV and telephony services. It also provides energy supply and transportation services, positioning itself as a regional market leader with a large operational footprint. The website reflects a mature digital presence with extensive content, clear navigation, and multiple customer engagement channels. Technically, the site uses modern web technologies and analytics tools, though it currently lacks a valid SSL certificate, which impacts its security posture. Privacy compliance is well managed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is professional and trustworthy but should address SSL issues to enhance security and user trust.

S

Shell Österreich

shell.at

0

Shell Österreich operates a comprehensive website targeting private and business customers in Austria, offering fuel products, electric vehicle charging, car care, and loyalty programs. The website is professionally designed with excellent content quality, clear navigation, and strong brand consistency. The technical infrastructure is based on Adobe Experience Manager with modern web technologies, but suffers from slow load times and lacks a valid SSL/TLS certificate, resulting in no HTTPS support. This is a critical security vulnerability that significantly impacts the site's security posture. Privacy and cookie policies are well documented and GDPR compliant, but no explicit security or incident response policies are found. Overall, the website is trustworthy and credible but requires urgent security improvements.

Y

yandree GmbH

yandree.com

0

yandree GmbH is a small Austrian IT services company specializing in IT documentation and data migration with over 20 years of experience. The company serves clients primarily in the energy, insurance, hosting, and IT sectors worldwide. Their website is built on Joomla CMS with a modern UI framework and includes comprehensive business and legal information. However, the site lacks HTTPS encryption, which is a critical security shortfall. Cookie consent mechanisms are implemented with a privacy-first approach, denying analytics and advertising cookies by default. The company demonstrates moderate digital maturity but should prioritize securing their website with SSL/TLS and enhancing security policies. Overall, yandree GmbH presents a professional and trustworthy business presence with room for technical and security improvements.

GE Vernova is a leading global energy technology company focused on accelerating the transition to reliable, affordable, and sustainable energy. The company offers a broad portfolio of energy generation and electrification technologies including gas, hydro, nuclear, steam power, wind power, and advanced electrification software and services. Their market position is strong, supported by a large global workforce and extensive technology base that contributes significantly to global electricity generation. The website reflects a professional and comprehensive digital presence with detailed business, investor, and sustainability information targeted at industry stakeholders, investors, partners, and potential employees. Technically, the site is built on Drupal 10, uses Cloudflare CDN, and integrates modern analytics and marketing tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS enforcement, which significantly impacts the security posture. Privacy and cookie policies are present and appear compliant with GDPR standards. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent remediation of SSL/TLS issues to ensure secure user interactions.

W

WIG Wietersdorfer Holding GmbH

wietersdorfer.com

0

WIG Wietersdorfer Holding GmbH is a large, family-owned industrial enterprise based in Austria with a 125-year history. The company operates internationally with subsidiaries in multiple countries, focusing on sectors such as cement, lime, GFK and PP pipe systems, and industrial minerals. Their business model is centered on manufacturing and global distribution, targeting industrial and construction markets. The website reflects a mature digital presence with a professional design, clear navigation, and multilingual support. Technically, the site is built on WordPress with the Avada theme and uses common plugins for forms, multilingual content, and cookie management. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS protocols, which is a critical issue that needs immediate remediation. Privacy compliance is well addressed with comprehensive policies and a robust cookie consent mechanism. Overall, the site demonstrates good business credibility and digital maturity but requires urgent security improvements to protect user data and maintain trust.

A

Air Liquide

airliquide.com

0

Air Liquide is a global leader in gases, technologies, and services for industry and healthcare, operating in 60 countries with a large workforce and millions of customers. The website reflects a mature digital presence with professional design, comprehensive content, and strong branding. However, the technical security posture is weak due to an invalid SSL certificate and disabled TLS protocols, which poses significant risks to user trust and data security. Privacy and cookie policies are well implemented and GDPR compliant, supporting regulatory adherence. The absence of direct contact information and vulnerability disclosure policies suggests areas for improvement in transparency and incident response readiness. Overall, the domain registration data aligns well with the business claims, indicating high legitimacy.

E

EVN

evn.at

0

EVN is a large Austrian energy provider specializing in electricity, gas, heating, water, photovoltaic solutions, and e-mobility services. The website targets private customers, businesses, agriculture, and municipalities, offering a comprehensive range of energy-related products and services. The company maintains a professional and consistent online presence with clear navigation and rich content. Technically, the site uses Kentico CMS, Cloudflare CDN, and integrates analytics tools like eTracker and Microsoft Application Insights. However, the security posture is weak due to the absence of a valid SSL certificate and disabled TLS protocols, which critically impacts secure communications. Privacy and cookie policies are present and GDPR compliant, with a consent mechanism implemented. Overall, the site is trustworthy and professional but requires urgent improvements in SSL/TLS configuration to ensure user security.

S

Svenska Cellulosa Aktiebolaget SCA (publ)

sca.com

0

SCA (Svenska Cellulosa Aktiebolaget) is a large enterprise operating primarily in the forestry, energy, and logistics sectors, with a strong focus on sustainability and renewable resources. The company manages Europe's largest private forest holdings and offers a comprehensive value chain including forest services, wood products, containerboard, renewable energy, pulp, and logistics. The website is professionally designed, content-rich, and well-structured, targeting stakeholders such as forest owners, investors, customers, and job seekers. Technically, the site uses modern JavaScript modules, SVG graphics, and is hosted behind Cloudflare, but lacks a valid SSL certificate, resulting in no HTTPS support which is a critical security concern. Privacy and cookie policies are present and indicate GDPR compliance, and the site uses Piwik PRO for analytics with moderate user tracking. The security posture is weak due to the absence of HTTPS and modern TLS protocols, no HSTS, and no OCSP stapling. Overall, the site is trustworthy and professional but requires urgent security improvements to protect user data and enhance trust.

I

IBT Connecting Energies GmbH

ibtgroup.at

0

IBT Connecting Energies GmbH is a medium-sized energy sector company specializing in high-efficiency cogeneration and trigeneration solutions for industrial clients. The company has a strong market position in Italy and Europe, supported by strategic partnerships with technology leaders such as Capstone Green Energy and Century Corporation. Their business model focuses on B2B energy efficiency projects, including consulting, implementation, maintenance, and investment services. The website reflects a professional digital presence with comprehensive content and clear navigation, targeting industrial customers seeking sustainable energy solutions. Technically, the site is built on WordPress with modern plugins and SEO tools, hosted likely on SiteGround. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security gap. Privacy and cookie policies are well implemented and GDPR compliant, enhancing user trust. Social media integration and partner logos further strengthen credibility. Overall, the site demonstrates good digital maturity but requires urgent security improvements to protect user data and maintain trust.

P

Polymer Competence Center Leoben GmbH

pccl.at

0

The Polymer Competence Center Leoben GmbH (PCCL) is a leading Austrian research institution specializing in polymer technology and polymer sciences. It collaborates closely with industry partners and academic institutions to deliver innovative R&D projects across sectors such as automotive, aerospace, packaging, and renewable energy. The website reflects a mature organization with a clear focus on cooperative research and sustainable polymer solutions. Technically, the site is built on Joomla CMS with a variety of extensions and frameworks, but suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support. This significantly impacts the security posture and user trust. Privacy and compliance documentation is well maintained, including GDPR-compliant privacy policies and incident reporting mechanisms. Overall, the site is professional and content-rich but requires urgent improvements in security infrastructure to align with best practices and user expectations.

A

American Superconductor

amsc.com

0

American Superconductor (AMSC) is a medium-sized US-based technology company specializing in advanced power electronics and superconductor systems that support smarter, cleaner energy solutions globally. The company serves energy utilities, renewable energy developers, and marine power sectors, positioning itself as a key player in the energy technology market with NASDAQ listing and a global footprint. The website reflects a professional digital presence with clear business descriptions, investor relations, and product offerings focused on grid and renewable energy solutions. Technically, the site is built on WordPress with modern JavaScript libraries and frameworks, hosted on Pantheon, and optimized for mobile users. However, performance is moderate and accessibility is basic. Security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, exposing the site to risks and reducing trust. Privacy compliance is well addressed with comprehensive privacy and cookie policies. Overall, the site is credible but requires urgent security improvements to protect users and enhance trust.

I

Ing. Punzenberger COPA-DATA GmbH

copadata.com

0

COPA-DATA is a well-established industrial and energy automation software company headquartered in Austria, offering the zenon Software Platform for digital transformation across multiple industries including energy, manufacturing, and transportation. The company maintains a strong global presence with numerous regional offices and a robust partner community, serving over 5,000 customers worldwide with more than 300,000 installations. Their business model focuses on software development, global distribution, and comprehensive support and training services.

Ö

ÖSTU-STETTIN Hoch- und Tiefbau GmbH

oestu-stettin.at

0

ÖSTU-STETTIN Hoch- und Tiefbau GmbH is a large Austrian construction company specializing in underground and high-rise construction projects worldwide. As part of the HABAU GROUP, it offers a comprehensive range of services including mining, garage construction, general contracting, industrial construction, and tunnel building. The website is professionally designed, multilingual (German and English), and provides detailed service information targeting clients in the construction and infrastructure sectors globally. Technically, the site is built on WordPress with a mature plugin ecosystem and hosted on Azure DNS infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy compliance is well addressed with a GDPR-compliant cookie consent mechanism and a comprehensive privacy policy. No explicit security or incident response policies are published, and no direct contact emails or phone numbers are visible, though social media channels and contact forms are available. Overall, the site demonstrates good business credibility and content quality but requires urgent security improvements to protect visitors and enhance trust.

G

GAS Global 24

gasglobal.com

0

GAS Global 24 is a mature and established workforce partner specializing in the Energy Industry with over 50 years of experience. The company offers comprehensive recruitment and staffing services globally, supported by regional offices and subsidiaries in Brazil and Mexico. Their business model focuses on delivering skilled professionals to energy projects worldwide, emphasizing strong client relationships and commitment to people. The website reflects a professional brand with consistent messaging and trust signals such as testimonials and a founder's message. Technically, the site is built on Squarespace with modern web technologies but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is basic with a cookie consent mechanism and a privacy policy, but lacks detailed GDPR indicators. Security posture is weak due to missing HTTPS, security headers, and email authentication records. Overall, the site is functional and credible but requires urgent security improvements to protect users and enhance trust.

S

Sprecher Automation GmbH

sprecher-automation.com

0

Sprecher Automation GmbH is a medium-sized Austrian company specializing in manufacturing and providing products and solutions for energy supply, industrial automation, and infrastructure technology. The company focuses on making critical infrastructures safer and optimizing complex energy and industrial processes. Their website reflects a professional and consistent brand presence with comprehensive content targeting energy, industry, infrastructure, and IT security sectors. The company maintains active communication channels including a customer portal, support, and career opportunities, indicating a mature business operation. Technically, the website is built on the TYPO3 CMS platform, utilizing modern frontend libraries such as Font Awesome and Swiper.js, and integrates analytics tools like Matomo and Google Analytics. The site is mobile-optimized with good navigation and SEO practices. However, performance metrics are unavailable, and accessibility is basic. From a security perspective, the website lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability. Although several security headers and a content security policy are implemented, the absence of TLS protocols and session resumption mechanisms significantly weakens the security posture. Privacy and cookie policies are present and GDPR compliant, but incident response and vulnerability disclosure information are missing. Overall, the website presents a trustworthy and professional business front but requires urgent improvements in SSL/TLS implementation to secure user data and enhance trust. Strategic recommendations include obtaining a valid SSL certificate, enabling modern TLS protocols, and publishing clear security and incident response policies.

O

OMV Petrom

petrom.com

0

OMV Petrom is a large, mature energy company primarily operating in Romania, with a focus on oil and gas exploration, production, refining, and retail services. The website serves as a corporate portal providing news, financial results, and information about strategic initiatives such as sustainability and electric mobility. The company is part of the OMV Group, a well-established parent organization. Technically, the website uses modern web technologies including jQuery and a CDN service (ZENEDGE), with Azure DNS hosting. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security deficiency. Security headers are present but cannot compensate for the missing SSL/TLS encryption. Privacy compliance is minimal, with no explicit privacy or terms of service pages found, though a cookie consent mechanism is implemented. Contact information is limited to a contact page and search form, with no direct emails or phone numbers publicly listed. Overall, the website is professionally designed and provides relevant business content but requires urgent improvements in security and privacy compliance to meet modern standards.

Y

Yokogawa Electric Corporation

yokogawa.com

0

Yokogawa Electric Corporation is a century-old global enterprise specializing in measurement, control, and information technologies for industrial sectors such as energy and manufacturing. The company maintains a comprehensive and professionally designed website that serves a global audience with extensive product, solution, and corporate information. Technically, the site employs modern web technologies including AngularJS and integrates analytics and monitoring tools like Google Tag Manager and New Relic. However, the absence of a valid SSL certificate and HTTPS support significantly weakens its security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance with GDPR standards. Overall, the website demonstrates high business credibility and content quality but requires urgent security improvements to align with best practices.

B

Bartenbach GmbH

bartenbach.com

0

Bartenbach GmbH is an established lighting innovation company based in Austria, specializing in holistic lighting planning, lighting technology development, and scientific research on the effects of light on humans and the environment. The company targets businesses and organizations seeking advanced lighting solutions to improve wellbeing, energy efficiency, and social interaction in spaces. Their website reflects a mature and professional presence with clear business information and a focus on innovation and sustainability. Technically, the site is built on WordPress with Elementor and uses modern SEO and marketing plugins, indicating a good level of digital maturity. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing visitors to potential risks. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

B

Borealis GmbH

borealisgroup.com

0

Borealis GmbH is a leading global provider of advanced and sustainable polyolefin and base chemical solutions, with a strong focus on innovation and circular economy principles. Operating in over 120 countries and headquartered in Vienna, Austria, the company employs approximately 6,000 people and reported a net profit of EUR 2.1 billion in 2022. Their business model centers on manufacturing and supplying high-quality polymer products and base chemicals to diverse industries including energy, consumer products, mobility, healthcare, and infrastructure. Technically, the website employs modern JavaScript libraries such as jQuery, Algolia Search, and Visual Website Optimizer, and is hosted on Amazon CloudFront CDN, indicating a mature digital infrastructure. The site is well-structured with comprehensive metadata and SEO optimizations, providing a good user experience and mobile responsiveness. However, performance metrics are not available. From a security perspective, the site has several security headers implemented, but critically lacks a valid SSL certificate and proper HTTPS configuration, exposing it to significant risks. TLS protocols are disabled, and advanced security features like OCSP stapling and session resumption are missing. Privacy and compliance policies are well documented, including GDPR-compliant privacy and cookie policies, terms of service, and a responsible disclosure policy. Overall, while the business credibility and content quality are high, the lack of HTTPS and SSL is a critical vulnerability that severely impacts the security posture and overall risk profile. Strategic remediation of SSL/TLS issues is urgently recommended to protect user data and maintain trust.

W

Walter Bösch GmbH & Co. KG

boesch.at

0

Walter Bösch GmbH & Co. KG operates a comprehensive website focused on heating, cooling, ventilation, and building automation solutions, primarily serving the Austrian market. The company positions itself as a leading provider with extensive 24/7 customer service and a broad portfolio of products and services. The website is well-structured, professionally designed, and provides rich content including customer references and detailed product information. Technically, the site uses modern technologies such as Pimcore CMS, Bootstrap framework, and service workers for enhanced user experience. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent security improvements to protect user data and enhance trust.

E

Energie AG

energieag.at

0

Energie AG is a well-established regional energy provider in Upper Austria, offering a broad range of services including electricity, gas, internet, photovoltaic solutions, and electromobility products. The company positions itself as a modern and reliable energy supplier with a strong focus on customer service and sustainability. Their website reflects a mature digital presence with comprehensive content and professional design, targeting both private and business customers. Technically, the site uses a modern technology stack with various JavaScript libraries and integrates multiple analytics and marketing tools. However, a critical security issue is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Despite this, the site implements several security headers and privacy policies that comply with GDPR requirements. Overall, the business appears legitimate and trustworthy, but urgent improvements in SSL/TLS configuration are necessary to enhance security and user trust.

Ocean Maps GmbH is a specialized engineering company focused on surveying, visualization, and application solutions primarily for the energy and construction sectors. Their services include underwater surveying using advanced sonar systems, UAV and laser scanning for aerial data collection, and custom software development for digital twins and GIS data visualization. The company positions itself as a leader in precise data acquisition and intuitive data presentation, targeting industry professionals requiring accurate and actionable spatial data. The website reflects a professional and consistent brand image with clear navigation and relevant content tailored to their target audience. Technically, the website is built on WordPress with a modern plugin ecosystem including Colibri Page Builder and TranslatePress for multilingual support. It integrates Google Analytics and AddThis for analytics and social sharing. However, the site lacks a valid SSL certificate, serving content over HTTP only, which is a significant security concern. DNS records appear misconfigured or missing, which could impact domain resolution and email services. Performance data is unavailable, but the site appears mobile-optimized and SEO-friendly. From a security perspective, the absence of HTTPS and missing DNS records are critical vulnerabilities that reduce trust and expose users to risks. While no direct vulnerabilities or malware are detected, the site lacks explicit security policies, incident response contacts, and vulnerability disclosure mechanisms. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism aligned with GDPR requirements. Overall, Ocean Maps GmbH presents a credible and professional business with strong domain expertise but requires urgent improvements in technical security infrastructure to protect users and enhance trust. Strategic recommendations include immediate SSL certificate installation, DNS configuration correction, and implementation of security best practices to elevate the security posture and compliance maturity.

LEDVANCE GmbH operates a comprehensive corporate website focused on professional lighting, home lighting, and renewable energy solutions. The company positions itself as a leading global provider in the lighting industry, targeting both professional lighting experts and consumers. The website offers extensive product catalogs, services, and sustainability information, reflecting a mature and well-established business model. Technically, the site uses modern technologies including nginx and Pimcore CMS, with integrations such as Google Tag Manager and Usercentrics for consent management. However, the SSL/TLS configuration is currently invalid or missing, which is a critical security concern. Security headers are well implemented, but the lack of valid HTTPS reduces the overall security posture. Privacy policies and cookie consent mechanisms are present and comprehensive, indicating good compliance with GDPR. Contact information is primarily available via contact forms, with no explicit emails or phone numbers found. Overall, the website is professional and content-rich but requires urgent improvements in SSL configuration to enhance security and trust.

thyssenkrupp AG is a large multinational industrial technology group focused on engineering innovative and sustainable solutions for future challenges. The website reflects a mature digital presence with comprehensive content targeting industrial clients, investors, and job seekers. Technically, the site uses modern frameworks like Angular and is hosted on Amazon CloudFront, but lacks a valid SSL certificate and HTTPS enforcement, which is a critical security deficiency. Security headers are well implemented, but the absence of TLS protocols and session security features lowers the security posture significantly. Privacy compliance is good with a clear privacy policy and GDPR adherence, though no cookie consent mechanism was detected. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.

S

Syensqo

cytec.com

0

Syensqo is a global science company focused on developing advanced, forward-looking solutions that enhance various sectors including energy, transportation, and manufacturing. The company positions itself as a market leader with a strong emphasis on innovation, sustainability, and investor transparency. Their website reflects a mature digital presence with comprehensive content targeting industrial clients, investors, and potential employees. Technically, the site is built on Drupal 10 with modern web technologies and integrates multiple analytics and marketing tools. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS support, which is a critical issue for trust and data protection. Despite strong security headers and privacy policies, the missing SSL significantly impacts the overall security score. The domain registration details are consistent with the business claims, indicating legitimacy. Strategic recommendations include immediate SSL implementation and enhancement of security configurations to align with best practices.

T

Treibacher Industrie AG

treibacher.com

0

Treibacher Industrie AG is a well-established Austrian company specializing in chemical and metallurgical precursors with a global market presence and over 125 years of experience. The website reflects a professional and comprehensive digital presence with detailed product portfolios, sustainability focus, and clear contact information. Technically, the site is built on WordPress with modern plugins for SEO, caching, and cookie management, but critically lacks HTTPS, exposing visitors to security risks. Privacy compliance is well addressed with cookie consent and a detailed privacy policy. The absence of explicit security policies and incident response information suggests room for improvement in security governance. Overall, the site is trustworthy and business credible but requires urgent security enhancements.

GCC is a large multinational company specializing in the production and distribution of cement, concrete, aggregates, and innovative construction products across Mexico, the United States, Latin America, and Canada. The company positions itself as a sustainable and innovative leader in the construction materials industry, targeting construction professionals and businesses. The website is built on WordPress with a modern tech stack including jQuery, Flickity, and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, and New Relic. While the site is professionally designed, mobile-optimized, and rich in content, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support. Security headers are partially implemented, and privacy compliance is well addressed with clear privacy and cookie policies including consent mechanisms. Contact information and business details are clearly presented, enhancing business credibility. Overall, the site demonstrates strong business and technical maturity but requires urgent remediation of SSL/TLS issues to improve security posture and user trust.

S

Samsung SDI Battery Systems GmbH

samsungsdibs.at

0

Samsung SDI Battery Systems GmbH is a medium-sized company specializing in the development, testing, and industrialization of advanced lithium-ion battery systems for electric and hybrid vehicles. Located in Kalsdorf near Graz, Austria, the company is part of the Samsung SDI family and holds multiple ISO certifications demonstrating a strong commitment to quality, environmental management, information security, and cybersecurity. The website presents a professional and content-rich digital presence targeting automotive OEMs and stakeholders in the e-mobility sector. Technically, the site is built on WordPress with Elementor and uses Matomo for analytics, but lacks HTTPS, which is a critical security shortfall. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the company shows a strong market position in energy and transportation sectors with a focus on sustainability and innovation.

J

JUDO.eu

judo.eu

0

JUDO.eu is a well-established German company specializing in water treatment solutions, with a history dating back to 1936. The company offers a broad range of products including protective filters, softening systems, lime protection, dosing pumps, leakage protection, wellness, heating protection, and smart home water solutions. Their market position is strong with a focus on innovation and sustainability, targeting both professional and consumer markets internationally. Technically, the website is built on WordPress with a modern tech stack including jQuery, Bootstrap, and various plugins for SEO, cookie management, and user interaction. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security weakness. Privacy compliance is well addressed with comprehensive policies and cookie consent mechanisms. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and enhance trust.

B

BioEnergy Consult

bioenergyconsult.com

0

BioEnergy Consult is a specialized advisory and consulting organization focusing on biomass energy, waste-to-energy, and waste management sectors. The website serves as a rich knowledge base with extensive articles targeting professionals and organizations interested in renewable energy and environmental sustainability. The technical infrastructure is based on WordPress with common plugins for SEO and analytics, but lacks HTTPS security, which is a critical vulnerability. The site has implemented privacy and cookie policies with consent mechanisms, but lacks explicit terms of service and security policies. Overall, the site is content-rich and professionally presented but requires significant security improvements to protect users and enhance trust.

P

PHINIA Inc.

delphi.com

0

PHINIA Inc. is a mature, large-scale business specializing in premium fuel systems, electrical systems, and aftermarket automotive products with a strong emphasis on sustainability and innovation. The company positions itself as a market leader advancing clean transportation technologies and alternative fuels. The website reflects a professional and consistent brand image with comprehensive corporate governance and investor relations information. Technically, the site uses Sitefinity CMS, Cloudflare hosting, and integrates multiple marketing and analytics tools such as Google Analytics and HubSpot. However, the security posture is weakened by an invalid SSL certificate and lack of modern TLS support, which poses a critical risk to user trust and data security. Privacy compliance is well addressed with clear cookie and privacy policies and consent mechanisms. Overall, the site is content-rich and professionally maintained but requires urgent remediation of SSL/TLS issues to ensure secure communications.

M

Miba AG

miba.com

0

Miba AG is a large Austrian industrial company specializing in the development and production of critical components for the energy value chain and transportation sectors. Their product portfolio includes sintered parts, sliding bearings, friction linings, power electronics components, coatings, and eMobility solutions. The company maintains a strong global presence with multiple locations and a focus on sustainable and efficient energy applications. Technically, the website is built on TYPO3 CMS and uses modern JavaScript libraries, but suffers from a critical lack of a valid SSL certificate, resulting in no HTTPS support. This significantly impacts the security posture and user trust. The site includes comprehensive corporate information, social media integration, and cookie consent mechanisms, indicating good privacy compliance. However, no explicit security or incident response policies are published. Overall, the website is professional and content-rich but requires urgent security improvements to protect users and business operations.

T

Trayport Limited

visotech.at

0

Trayport Limited operates a comprehensive energy trading platform connecting traders, brokers, and exchanges globally, with a strong focus on power, gas, and carbon markets. Their flagship product, Joule, offers extensive market access and analytics, positioning them as a key player in the energy trading software sector. The website reflects a mature digital presence with rich content and clear navigation tailored to energy market participants. Technically, the site leverages modern web technologies including WordPress, Alpine.js, and Mapbox for interactive features, but lacks HTTPS support, which is a critical security shortfall. Security posture is weak due to the absence of SSL/TLS and security headers, exposing users to potential risks. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business appears legitimate and professionally presented, but urgent improvements in security infrastructure are recommended.

I

iC Consulenten Ziviltechniker GesmbH

ic-group.org

0

iC Consulenten Ziviltechniker GesmbH is a well-established Austrian engineering consultancy firm specializing in integrative solutions across construction, transportation, environment, and energy sectors. With over 22 years of operation and multiple international offices, the company serves clients requiring complex, interdisciplinary project management and engineering expertise. Their website reflects a professional presence with detailed service offerings and a strong partner network. Technically, the site is built on TYPO3 CMS with modern frontend technologies but lacks HTTPS, which is a critical security deficiency. The absence of SSL/TLS exposes visitors to significant risks and undermines trust. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy, though incident response and vulnerability disclosure mechanisms are absent. Business legitimacy is strong, supported by consistent WHOIS data and trust indicators such as certifications and social media presence. Strategic improvements in security posture, especially enabling HTTPS and enhancing security headers, are essential to protect users and improve overall trust.

HOT Engineering GmbH operates a professional website serving the energy sector, specializing in consultancy, laboratory services, software, and training focused on underground energy storage and oil & gas field development. The company positions itself as a leading provider with a mature domain and a consistent business presence. The technical infrastructure is based on WordPress with common plugins and hosted by Hetzner, but lacks HTTPS, which is a critical security gap. The site includes cookie consent mechanisms and privacy policies compliant with GDPR, reflecting good privacy practices. However, the absence of SSL/TLS encryption significantly impacts the security posture and overall trustworthiness. Strategic improvements in security configuration are essential to protect user data and enhance credibility.