Security Directory

D

DCCS GmbH

dccs.at

0

DCCS GmbH is a large Austrian IT company specializing in business IT solutions, digital transformation, and AI applications primarily serving industrial and energy sectors. The company operates multiple offices across Austria, Germany, and Bosnia and Herzegovina, employing over 330 professionals. Their website reflects a mature digital presence with comprehensive service offerings and strong branding. Technically, the site uses modern frameworks such as Liferay and React, with integrated analytics and captcha services. However, a critical security gap exists due to the lack of a valid SSL certificate and proper HTTPS configuration, which undermines user trust and data security. Privacy and cookie compliance are well implemented, with clear policies and consent mechanisms. Overall, the website is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to meet security best practices.

M

Montanwerke Brixlegg AG

montanwerke-brixlegg.com

0

Montanwerke Brixlegg AG is a mature manufacturing company specializing in copper recycling and upcycling solutions, with a strong emphasis on sustainability. The company operates primarily in Austria and targets industrial customers requiring high-quality copper products such as cathodes and round bolts. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with common plugins like Yoast SEO and Borlabs Cookie, but suffers from a lack of a valid SSL certificate, resulting in no HTTPS support and weak security posture. Security headers are partially implemented, but critical TLS protocols and cipher suites are missing, exposing the site to potential risks. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Overall, the site scores moderately due to security shortcomings and technical performance issues.

C

Curium Austria GmbH

iason.eu

0

Curium Austria GmbH is a specialized manufacturer and distributor of radiopharmaceuticals for nuclear medicine, operating two production sites in Austria and integrated into the global Curium Pharma network since 2021. The company targets healthcare providers and hospitals across Europe, offering PET radiopharmaceuticals with marketing authorizations in multiple countries. The website is professionally designed using WordPress and Elementor, providing comprehensive content about the company, products, and career opportunities. Technically, the site uses modern web technologies and is hosted behind Cloudflare, but critically lacks a valid SSL certificate, exposing it to security risks. Privacy compliance is well managed with a detailed cookie consent mechanism and a comprehensive privacy policy. Contact information is available primarily via a contact form and physical addresses, but no explicit company emails or phone numbers are listed. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements.

J

Joseph Haydn Privathochschule GmbH

haydnkons.at

0

Joseph Haydn Privathochschule GmbH is a private tertiary education institution specializing in music education located in Eisenstadt, Austria. The institution offers a range of study programs including Bachelor, Master, part-time studies, and specialized courses in Jazz and Popular music, targeting young musicians and international students. The website is built on TYPO3 CMS and hosted on Apache servers, with a moderate digital maturity level. It features professional design, clear navigation, and good mobile optimization. However, the absence of HTTPS and cookie consent mechanisms indicates critical security and privacy compliance gaps. The site uses Google Tag Manager for analytics and has active social media channels. Overall, the business presents itself professionally but needs to address security and privacy shortcomings to improve trust and compliance.

T

TAL Aviation Group

talaviation.com

0

TAL Aviation Group is a well-established airline representation and travel services company with a global presence and a history dating back to 1987. The company offers a broad range of services including passenger and cargo GSA, airline distribution, destination marketing, tourism services, and digital marketing solutions. Their website reflects a professional and consistent brand image targeting airlines, tourism boards, and travel technology companies worldwide. Technically, the website uses a custom CMS with legacy jQuery libraries and integrates common marketing and analytics tools such as Google Analytics and Outbrain. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Security headers are implemented but cannot compensate for the lack of encryption. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, indicating awareness of GDPR requirements. Overall, the website is functional and credible but requires urgent security improvements to meet modern standards.

U

USU GmbH

usu.de

0

USU GmbH is a well-established enterprise technology company headquartered in Germany, specializing in IT service management, software asset management, knowledge management, cloud management, and digital consulting solutions. The company targets large enterprises and organizations seeking to optimize their IT landscapes and customer service experiences through AI-powered tools and services. USU maintains a strong market position supported by a comprehensive product portfolio, global customer base, and industry recognitions. Technically, the website is built on Drupal 10 with a modern tech stack including jQuery and various marketing and analytics integrations. The site is well-optimized for mobile and SEO, providing excellent user experience and navigation. However, a critical security gap exists due to the absence of a valid SSL certificate and lack of TLS support, which significantly impacts the security posture. Privacy policies and cookie consent mechanisms are present and appear GDPR compliant, supporting the company's commitment to data protection. Overall, USU demonstrates high business credibility and professionalism but must urgently address its SSL/TLS configuration to ensure secure communications and maintain trust.

A

ATMOSA Petrochemie GmbH

atmosa.at

0

ATMOSA Petrochemie GmbH is a medium-sized Austrian company specializing in the production and supply of Phthalic Anhydride, a key petrochemical product. Established in 1995, it has positioned itself as a major European producer with a focus on reliability and long-term supply to chemical producers globally. The website reflects a professional business presence with clear company information, product details, and contact options targeting industrial clients and partners. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and analytics tools, hosted on infrastructure linked to hostprofis.com. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to risks and undermining trust. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Overall, the site is functional and professional but requires urgent security improvements to meet modern standards.

B

Brick & Patel LLP

brickpatel.com

0

Brick & Patel LLP is a small legal services firm specializing in trust and estate planning and administration, serving clients primarily in several US states including New York and Florida. The website provides basic information about the firm's services and geographic focus but lacks detailed contact information and modern web features. Technically, the site is built on an Apache server using older JavaScript libraries and Cloudfront CDN for some assets. However, the site lacks a valid SSL certificate, resulting in no HTTPS support despite security headers indicating HSTS, which undermines user trust and security. Privacy compliance is minimal with no cookie consent mechanism and only a basic privacy policy present. Business credibility is supported by a mature domain and consistent WHOIS data, but the overall digital maturity is low. Security posture is weak due to missing SSL and outdated libraries, posing risks to visitors and the firm's reputation. Strategic improvements should focus on securing the site with valid SSL, updating technology stack, and enhancing privacy and security policies to meet modern standards.

Vision Estate India is a medium-sized real estate company based in India, specializing in residential and commercial properties primarily in Gurgaon. Established in 1996 and ISO 9001:2008 certified, the company offers services including buying, selling, and renting properties. The website is built on WordPress with WooCommerce and Elementor, showcasing property listings, testimonials, and partner logos. However, the site lacks HTTPS, which significantly impacts its security posture. No privacy or cookie policies are present, indicating compliance gaps. The technical infrastructure is moderate but could benefit from performance and security improvements.

G

GATX Corporation

gatx.com

0

GATX Corporation is a well-established global leader in transportation asset leasing, with a diverse portfolio including railcars, locomotives, tank containers, and aircraft spare engines. The company holds a strong market position across North America, Europe, and India, supported by a comprehensive service offering and a commitment to sustainability and customer support. The website reflects a mature digital presence with professional design, clear navigation, and extensive business information tailored to customers, investors, and job seekers. Technically, the site leverages modern frameworks such as Vue.js and integrates advanced search and consent management tools, although performance is moderate and SSL/TLS configuration is currently lacking. Security headers are properly set, but the absence of a valid SSL certificate significantly impacts the security posture. Overall, the site is trustworthy and professional but requires urgent remediation of HTTPS to ensure secure communications and maintain user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

P

Pittel+Brausewetter Holding GmbH

pittel.at

0

Pittel+Brausewetter Holding GmbH is a well-established Austrian family-owned construction company with over 150 years of experience. They specialize in a broad range of construction services including road, civil, industrial, structural, bridge, and sports facility construction. The company maintains a strong market position with multiple reference projects and a consistent brand presence. Technically, the website is built on WordPress using common plugins and themes, with moderate performance and good mobile optimization. However, a critical security weakness is the lack of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Contact information and social media presence are clearly provided, enhancing business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 13 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

Allea Group

alleagroup.com

0

Allea Group is a medium-sized real estate investment and development holding company based in Cyprus, specializing in exclusive European residential and commercial property projects. The website presents a professional and well-structured digital presence targeting investors and clients interested in high-end real estate opportunities. The technical infrastructure is built on WordPress with popular plugins and is hosted behind Cloudflare CDN, but critically lacks a valid SSL certificate, resulting in no HTTPS availability which severely impacts security posture. Privacy and cookie policies are comprehensive and GDPR compliant, indicating good privacy awareness. However, the absence of terms of service, security policy, and vulnerability disclosure reduces transparency. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 16 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

C

CANBERRA PACKARD Central Europe GmbH

cpce.net

0

CANBERRA PACKARD Central Europe GmbH is a well-established company specializing in the sales, installation, and servicing of nuclear and environmental radiation detection and measurement equipment, as well as medical radiation diagnostic and therapy equipment. Founded in 1987 in Austria, the company has grown to become the largest supplier in Central and Eastern Europe, serving a diverse clientele including government organizations, nuclear power plants, research centers, and international bodies. The website reflects a professional corporate presence with relevant content and clear contact information, targeting industry professionals and institutional customers. Technically, the website is built on WordPress 6.8.1 running PHP 8.2.28 and hosted on DigitalOcean infrastructure. While the site demonstrates good mobile optimization and accessibility, performance metrics are lacking, and SEO optimization is basic. The absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks and undermining trust. Security headers are minimal, and no advanced security frameworks or incident response policies are evident. From a security perspective, the site’s posture is weak due to the lack of HTTPS, no cookie or privacy policies, and no vulnerability disclosure mechanisms. The SPF record is valid, and DNS configurations are consistent with the business location, but the SSL/TLS configuration is non-existent, which is a major vulnerability. No WAF or blocking mechanisms are detected, indicating open accessibility but also potential exposure. Overall, the site is functional and professional in content but requires urgent improvements in security and privacy compliance to meet modern standards. Strategic recommendations include implementing HTTPS with a valid certificate, publishing privacy and cookie policies, and enhancing security headers and incident response readiness to improve trust and compliance.

T

Tenne Export-Import Handelsgesellschaft m.b.H.

tenne.at

0

Tenne Export-Import Handelsgesellschaft m.b.H. is a well-established Austrian retail company specializing in bathroom products and complete bathroom systems. With over 40 years of industry experience, the company operates multiple showrooms across Austria and offers an online shop, targeting both end consumers and business clients. Their product range includes bathroom furniture, fittings, tiles, showers, and accessories, supported by services such as online bathroom planning and mobile consultation. The company holds reputable certifications and awards, reinforcing its strong market position as a leading bathroom retailer in Austria. Technically, the website is built on WordPress with a variety of plugins including Yoast SEO, Borlabs Cookie for consent management, and Contact Form 7 for user interactions. The site uses Apache hosting likely provided by Telekom Austria. While the site is rich in content, well-structured, and optimized for SEO and mobile devices, it suffers from a critical security shortfall: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security-wise, the site lacks modern TLS protocols, HSTS headers, and email security measures such as DMARC and DNSSEC. However, it employs reCAPTCHA on forms and avoids known SSL vulnerabilities. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms in place. Contact information is abundant and clearly presented, enhancing business credibility. Overall, the website is professional, content-rich, and trustworthy from a business perspective but requires urgent improvements in SSL/TLS configuration and security headers to protect user data and improve trustworthiness. Addressing these issues will elevate the site's security score and user confidence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

wirtschaft-burgenland.at

wirtschaft-burgenland.at

0

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: securityHeaders, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: gdpr. 26 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 30 security findings identified across all modules.

Royal Avebe is a well-established cooperative specializing in the production and supply of potato-based ingredients such as potato starch and protein. With a history dating back to 1919, the company serves diverse markets including food, industrial applications, and animal nutrition. The website reflects a mature business with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern SEO and tracking tools but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Privacy compliance is well addressed with detailed policies and a cookie consent mechanism. Contact information and social media presence are clearly provided, enhancing business credibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 23 security findings identified across all modules.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 24 security findings identified across all modules.

V

VCE | Vienna Consulting Engineers ZT GmbH

vce.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 28 security findings identified across all modules.

Dr. Rammer RM e.U. is a small Austrian consultancy specializing in research funding and innovation project support, targeting primarily SMEs and organizations seeking national and international funding opportunities. The business offers advisory services including funding instrument search, application support, communication with funding bodies, and project execution consulting. The website content is primarily in German with some English navigation, reflecting a niche market focus in Austria and the EU research funding ecosystem. Technically, the website is built with outdated tools (Microsoft FrontPage Express 2.0) and lacks modern web standards such as responsive design and accessibility features. Performance is slow with a load time exceeding 10 seconds. There is no CMS detected, and hosting appears to be via a domain control provider with no clear hosting platform identified. From a security perspective, the site lacks HTTPS entirely, exposing visitors to risks. No security headers or modern TLS protocols are implemented. Privacy compliance is minimal with a privacy policy present but no cookie consent mechanism. Contact information is limited to a single email address with no phone or physical address provided on the site. No incident response or security policies are disclosed. Overall, the website presents moderate business credibility but suffers from critical security shortcomings and outdated technical implementation. Strategic improvements in security, performance, and privacy compliance are recommended to enhance trust and user experience.

P

Private Banking | Personal Service | 42 North Private

admiralsbank.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 26 security findings identified across all modules.

Security assessment completed with an overall score of 0/100 (unknown risk). 4 critical issues require immediate attention. Total of 26 security findings identified across all modules.

W

WeRetail GmbH

weretail.com

0

WeRetail GmbH is a small German-based company specializing in integrated travel retail and cross-border e-commerce solutions targeting Chinese tourists and customers. Their services include enabling businesses to accept mobile payments via Alipay and WeChat Pay, providing POS solutions with table reservation and menu pre-ordering, and offering cross-border logistics and VAT refund services. The company leverages popular Chinese social media platforms such as WeChat and Xiaohongshu for marketing and customer engagement. Technically, the website is built on WordPress using the Enfold theme and Avia framework, hosted likely on AWS infrastructure. While the site is well-structured and content-rich, it suffers from a critical lack of HTTPS, which severely impacts its security posture. Cookie consent mechanisms are implemented, but Google Analytics is installed without active configuration. Contact information is clearly provided, enhancing business credibility.

The website knallgrau.at serves primarily as a login portal for konsoleH, a hosting and account administration service likely provided by Hetzner, a known hosting provider. The site offers access points to webmail and account administration but lacks any descriptive business content or marketing information. The target audience appears to be existing customers managing their hosting accounts. Technically, the site runs on Apache and is hosted by Hetzner, but it lacks modern security implementations such as HTTPS, HSTS, and security headers. Performance data is unavailable, but the minimal content and lack of optimization suggest slow and poor user experience, especially on mobile devices. Security posture is weak due to the absence of SSL and critical security headers, exposing users to potential risks. No privacy, cookie, or terms of service policies are present, indicating poor compliance with privacy regulations. Overall, the site is functional for its limited purpose but falls short in security, privacy, and user experience standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

Bob Silverstein

bobsilverstein.com

0

Bob Silverstein's website represents a small professional services business specializing in therapy, coaching, and crisis management consulting, primarily targeting individuals and organizations in high-stress professions such as investment professionals and corporate lawyers. The business is positioned as a niche provider with over 25 years of experience, offering unique tools and personalized services. The website content is well-structured and professionally presented, though lacking formal privacy and cookie policies. Technically, the site is built on WordPress with common plugins like Contact Form 7 and Yoast SEO, hosted on HostPapa infrastructure. However, the site suffers from poor performance with a very slow load time and large page size. Mobile optimization and accessibility are basic, and SEO is adequately addressed through Yoast. From a security perspective, the site has significant weaknesses: no valid SSL certificate or HTTPS support, no security headers, and malformed DNS CAA records. While Google reCAPTCHA is implemented to protect forms, the lack of HTTPS and other security best practices exposes the site to risks. No incident response or vulnerability disclosure policies are present, and privacy compliance is minimal. Overall, the site is functional and credible as a professional service platform but requires urgent improvements in security and privacy compliance to protect users and enhance trust.

B

Bioquadrat Energie- und Wassertechnik Holding GmbH

biogest.at

0

BIOGEST is a well-established Austrian company specializing in the design, construction, and operation of biomethane and biogas plants. With over 30 years of experience and more than 200 plants worldwide, they position themselves as a full-service provider offering project development, engineering, co-investment, construction, and maintenance services. Their target audience includes farmers, investors, and customers interested in sustainable energy solutions. The website is professionally designed, content-rich, and provides comprehensive contact information and social media presence. Technically, the site is built on TYPO3 CMS and served via Cloudflare, but lacks a valid SSL certificate, which is a critical security shortfall. Cookie consent mechanisms and tracking via Google Tag Manager are implemented, but GDPR compliance is basic. No explicit security or incident response policies are published, which could be improved to enhance trust and compliance.

T

Triton - Building Better Businesses

triton-partners.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 22 security findings identified across all modules.

G

Global Recruitment & Workforce Services - Brunel

brunel.net

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 26 security findings identified across all modules.

C

Cannerald AG

cannerald.com

0

Cannerald AG is a Swiss-based medical cannabis producer specializing in pharmaceutical-grade cannabis products. The company operates a high-tech indoor vertical farming facility in Switzerland, targeting an international clientele with a focus on quality, safety, and sustainability. Their business model centers on B2B supply of medical cannabis with rigorous quality controls and upcoming GMP certification. Technically, the website is built on Webflow and uses modern frontend technologies, but lacks a valid SSL certificate, resulting in no HTTPS support which is a critical security gap. The site includes a cookie consent mechanism compliant with GDPR and provides contact via a form, but lacks explicit email or phone contact details. Social media presence is active on major platforms. Security posture is weak due to missing SSL/TLS, but no other major vulnerabilities are detected. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and trust.

Security assessment completed with an overall score of 0/100 (unknown risk). 2 critical issues require immediate attention. Total of 30 security findings identified across all modules.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 25 security findings identified across all modules.

biolution GmbH is a specialized scientific consulting and visualization company serving the life sciences sector with over 20 years of experience. Their services include scientific consulting, 3D visualizations, grant and funding support, project management, coaching, workshops, and media design. The company targets researchers and organizations in the life sciences domain, positioning itself as a niche expert with a professional online presence. Technically, the website is built on WordPress with modern plugins like Elementor and WooCommerce, hosted on a LiteSpeed server by mysecurecloudhost.com. While the site has good SEO and structured data, it lacks a valid SSL certificate, which is a critical security gap. Privacy compliance is well addressed with iubenda cookie and privacy policies, including consent mechanisms. Social media integration is strong, enhancing trust and engagement. Security posture is weak due to missing HTTPS and lack of advanced security headers, exposing the site to potential risks. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

ALC Eventsolutions GmbH is a small Austrian company specializing in full-service event technology solutions, including project planning, corporate and private events, and technical equipment such as sound, lighting, media, stage technology, and special effects. The company targets event organizers and clients primarily in Vienna and surrounding areas, positioning itself as a reliable and innovative partner for memorable events. Their website reflects a professional and consistent brand image with clear service offerings and social media presence. Technically, the website runs on an Apache server with common JavaScript libraries like jQuery, Owl Carousel, and WOW.js for animations. The hosting DNS is managed via Oracle Cloud. However, the site lacks HTTPS, which is a significant security and trust concern. Performance data is missing, but the site appears to have basic mobile optimization and SEO features. No CMS or major frameworks were detected, suggesting a custom-built site. From a security perspective, the absence of an SSL certificate and HTTPS is a critical vulnerability, exposing users to potential data interception. No advanced security headers or policies are implemented, and there is no visible incident response or vulnerability disclosure information. Privacy compliance is minimal, with a basic privacy policy but no cookie consent mechanism or GDPR explicit statements. Overall, while the business appears legitimate and professionally presented, the website's security posture is weak, and privacy compliance is insufficient. Immediate improvements in SSL implementation and privacy practices are recommended to enhance trust and protect users.

I

Invibio Biomaterial Solutions - Advancing Implantable Devices

invibio.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 23 security findings identified across all modules.

Softwerk AB is a medium-sized software development company based in Växjö, Sweden, founded in 2008. The company specializes in advanced software solutions including mobile app development, web development, system development, integration, AI & machine learning, and big data. Their market position is that of a regional technology provider with strong ties to academic research and commercial innovation. The website presents a professional image with clear service offerings and client references. Technically, the site uses PHP and nginx, with Google Fonts and Google Analytics integrated. However, the website lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security deficiency. Security headers are partially implemented but the absence of TLS protocols and OCSP stapling reduces the security posture. Privacy and cookie policies exist but are basic, with no explicit GDPR compliance statements or incident response policies. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and enhance trust.

Security assessment completed with an overall score of 0/100 (unknown risk). 5 critical issues require immediate attention. Total of 27 security findings identified across all modules.