Security Directory

I

IKG Group AB

ikg.se

0

IKG Group AB is a mature Swedish technical consulting company specializing in engineering services for product development firms. With over 28 years of domain age and a presence in ten Swedish cities, the company offers a broad range of engineering disciplines including software development, mechanics, IT systems, electrical construction, and project management. The website reflects a professional business with consistent branding and a clear focus on technical consulting services. Technically, the site uses an older jQuery-based stack combined with modern analytics tools like Google Analytics and Tag Manager. However, the website suffers from significant security shortcomings, notably the absence of HTTPS and a valid SSL certificate, which exposes visitors to risks and reduces trust. Privacy compliance is basic, with a cookie consent banner present but no visible privacy policy or terms of service. The business information is clear and consistent with WHOIS data, supporting legitimacy. Overall, the site is functional but requires urgent security improvements to protect users and enhance credibility.

P

Plasser & Theurer

plassertheurer.com

0

Plasser & Theurer is a well-established Austrian company specializing in the development, construction, and export of railway track maintenance machinery with over 60 years of industry presence. The company serves railway infrastructure operators and maintenance professionals globally, supported by a broad network of subsidiaries and partners. Their website reflects a professional and comprehensive digital presence, showcasing their products, services, and international reach. Technically, the website is built on TYPO3 CMS and uses modern JavaScript libraries such as Swiper.js for UI components and Matomo for analytics. However, the site suffers from critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture and user trust. Performance is slow, and no advanced security headers or domain protection mechanisms are in place. Security-wise, the lack of HTTPS and security headers exposes visitors to risks, and the absence of cookie consent mechanisms raises compliance concerns under GDPR. The WHOIS data confirms a mature and consistent domain registration aligned with the company's identity, enhancing legitimacy. Overall, while the business and content quality are strong, the security and privacy compliance gaps present significant risks. Strategic recommendations include immediate implementation of HTTPS, security headers, and cookie consent mechanisms, alongside enhancing domain security configurations. These steps will improve trust, compliance, and overall security posture, supporting the company's reputable market position.

ArcelorMittal Construction is a large, established manufacturing company specializing in steel-based building solutions for architectural projects, with a strong presence in Austria and multiple European markets. The website reflects a professional and comprehensive business offering, targeting construction professionals and project developers with a broad portfolio of products and services emphasizing sustainability and innovation. Technically, the website uses modern JavaScript libraries and analytics tools, hosted behind Cloudflare, but suffers from a critical lack of valid SSL/TLS configuration, exposing users to security risks. Privacy and cookie policies are well implemented with consent mechanisms, supporting GDPR compliance. The security posture is weak due to missing HTTPS, but other security headers and practices are present. Overall, the website is trustworthy and professional but requires urgent security improvements to protect users and maintain credibility.

B

BESTSELLER

bestseller.com

0

BESTSELLER is a well-established international fashion retailer with a broad global footprint, operating over 2,800 stores and multiple brands. The company targets a diverse consumer base with fashionable apparel and accessories. The website demonstrates good digital maturity with modern technologies such as Google Tag Manager, Umbraco CMS, and a comprehensive cookie consent mechanism. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. The site is well-structured, accessible, and SEO-optimized, with active social media engagement. Privacy compliance is strong with detailed cookie and privacy policies aligned with GDPR requirements. WHOIS data confirms the domain's maturity and legitimacy. Strategic improvements in security posture are essential to elevate the overall risk profile.

The website aventics.com currently presents a minimal web presence with only a simple welcome message and no substantive content or metadata. The domain is mature and registered with a reputable registrar, indicating legitimacy, but the lack of HTTPS and security configurations significantly undermines trust and security posture. There are no privacy or cookie policies, no contact information, and no business details available on the site, which limits user confidence and compliance with data protection regulations. Technically, the site is basic with moderate performance but lacks modern web technologies and security best practices. Overall, the site poses a risk due to the absence of encryption and security headers, and it is recommended to implement HTTPS, add comprehensive privacy and security policies, and provide clear business and contact information to improve trust and compliance.

B

BIGagency

bigagency.es

0

BIGagency is a digital marketing franchise business offering a comprehensive suite of services including branding, social media management, web design, digital marketing, content and video production, and e-commerce solutions. The company targets marketing professionals and commercial agents seeking to establish their own digital agency with low upfront investment. The website is built on WordPress using Elementor and integrates marketing tools such as ActiveCampaign and Google Tag Manager. However, the site lacks a valid SSL certificate, which is a critical security concern. Contact information is clearly provided with multiple physical locations in Portugal, Germany, and Spain, supporting a European market presence. Privacy and cookie policies are absent, indicating compliance gaps.

The website playtechsports.com currently serves a placeholder page indicating a lost redirection due to DNS misconfiguration. There is no accessible business content, contact information, or policies available on the site. The domain is registered and uses multiple authoritative DNS servers, but lacks a valid SSL certificate and modern security configurations. The technical infrastructure is minimal, with nginx as the web server and CacheFly CDN inferred from headers. Security posture is weak due to absence of HTTPS, TLS protocols, and security headers. Overall, the site is not operational for end users and presents significant risks from a security and compliance perspective.

W

Worthington Enterprises

worthingtonindustries.com

0

Worthington Enterprises is a publicly traded enterprise specializing in the acquisition, design, and manufacturing of innovative building and consumer products, as well as sustainable energy solutions. The company recently separated from Worthington Steel, forming two independent entities focused on differentiated growth strategies. The website reflects a professional corporate presence with clear branding and investor relations information. Technically, the site uses modern JavaScript libraries and Google Tag Manager for analytics but suffers from a critical lack of valid SSL/TLS configuration, exposing users to security risks. Privacy and cookie policies are well implemented, supporting GDPR compliance. Overall, the site is content-rich and professionally maintained but requires urgent security improvements to protect visitors and maintain trust.

ROSMARIE is a small Dutch theatrical business focused on monologue performances and play instruction, led by Rosmarie 'Roos' Blaauboer. The website serves as a professional portfolio and booking platform, targeting theater audiences and cultural event organizers. The business operates with a niche market position emphasizing artistic productions and cultural heritage. Technically, the site is built on WordPress with common plugins for SEO and sliders, but suffers from lack of HTTPS and performance optimization. Security posture is weak due to missing SSL, lack of security headers, and absence of privacy and cookie policies. The domain is mature and consistent with the business history, but domain protection is minimal. Overall, the site is functional and professional in content but requires urgent security and privacy improvements to reduce risk and improve trust.

L

Lingohub

lingohub.com

0

Lingohub is a technology company specializing in translation and localization management software designed to streamline and automate the localization process for various user groups including managers, translators, developers, and designers. Founded in 2012 and headquartered in Austria, Lingohub offers a SaaS platform with robust CAT tools, translation memory, machine translation, and integration capabilities with popular development and design tools. The company positions itself as a trusted partner for enterprises and developers seeking efficient localization workflows. Technically, the website is built on modern frameworks such as Next.js and React, hosted on Vercel, and uses a headless CMS (Storyblok) for content management. The site demonstrates good design quality, mobile optimization, and SEO practices. However, the security posture is currently weak due to an invalid SSL certificate and lack of TLS protocol support, which poses a critical risk to user trust and data security. Privacy compliance is strong with clear privacy and cookie policies and consent mechanisms in place. Overall, Lingohub presents a professional and credible online presence but must urgently address SSL and TLS issues to improve security and trustworthiness.

C

CubeServ Group

cubeserv.com

0

CubeServ Group is a well-established consulting company specializing in SAP Business Intelligence, Advanced Analytics, and Business Analytics solutions. With over 21 years of domain presence and more than 5,000 analytics projects, CubeServ holds a strong market position in the technology sector, particularly focusing on SAP products and services. Their offerings include business analytics platforms, SAP analytics products, software development, and application management services, targeting companies seeking to leverage SAP for data-driven decision making. The website is professionally designed, content-rich, and well-structured, supporting a positive user experience and clear navigation. Technically, the site uses WordPress with Elementor and various modern plugins, hosted likely on AWS infrastructure. However, a critical security gap exists due to the absence of HTTPS/SSL, which significantly impacts the security posture and trustworthiness. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Overall, CubeServ demonstrates strong business credibility but must urgently address the lack of SSL to improve security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

Wellington Partners

wellington-partners.com

0

Wellington Partners is a well-established European venture capital firm specializing in early- and growth-stage life science companies. Founded in 1998 and based in Germany, the company focuses on investing in innovative healthcare technologies and supporting entrepreneurs in the life sciences sector. The website reflects a professional and content-rich platform targeting startups, investors, and partners within the European life science ecosystem. Technically, the site is built on WordPress with a modern theme and common plugins, but suffers from a critical lack of HTTPS, which severely impacts its security posture. While privacy and cookie policies are comprehensive and GDPR compliant, the absence of SSL/TLS encryption is a major vulnerability. Contact options are primarily via a contact form and LinkedIn, with no direct email or phone contacts publicly listed. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust.

The website apa.org is currently inaccessible due to a Web Application Firewall (WAF) protection mechanism implemented by Incapsula, which blocks direct access to the site's content. As a result, no meaningful content, metadata, or contact information is available for analysis. The domain is registered and DNS records indicate hosting on Amazon AWS with proper email security configurations such as SPF and DMARC. However, the absence of a valid SSL/TLS certificate and lack of HTTPS support represent critical security weaknesses. The site lacks visible privacy, cookie, or terms of service policies in the accessible content, and no security headers beyond basic HTTP headers are present. Overall, the website's security posture is weak, and the content quality and business credibility cannot be assessed due to the blocking.

The domain iatsmartdial.com is currently protected by a Cloudflare security challenge page that blocks access to any actual website content. This prevents a full analysis of the business, its services, and compliance posture. The domain is mature, registered since 2009 with GoDaddy, and shows strong domain protection settings. However, the lack of a valid SSL certificate and absence of accessible content significantly reduce trust and security posture. The technical infrastructure includes hosting on AWS IPs and mail services via Outlook protection, but no modern TLS protocols are enabled. Security headers are present but insufficient without HTTPS. No privacy, cookie, or terms of service policies are found, and no contact information or business details are accessible. Overall, the site is currently inaccessible for meaningful analysis due to WAF blocking, resulting in a low AI score and limited insights.

S

Stepstone

stepstone.at

0

Stepstone.at is a professional online job board focused on the Austrian market, providing job listings, career advice, and recruitment services. It is part of The Stepstone Group GmbH, a recognized entity in the recruitment industry. The website offers a rich user experience with modern search tools and career resources tailored for job seekers and recruiters in Austria. Technically, the site uses modern web technologies including React, Express, and integrates analytics and A/B testing tools such as Datadog and Optimizely. However, the absence of a valid SSL certificate and limited security headers represent significant security weaknesses. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks a cookie consent mechanism. Overall, the site is legitimate and well-positioned in its market but requires urgent improvements in security and privacy practices.

ITS Industrial Turbine Services GmbH is a specialized company focused on providing advanced systems and solutions for industrial gas turbines, including monitoring, control, and spare parts. Their key offerings include the TMOS SCADA monitoring system, MACH7 turbine control system, premium flame scanners, and GE Speedtronic™ spare parts. The company targets industrial sectors such as oil, gas, steel, aluminum, and paper industries worldwide, positioning itself as a reliable and experienced partner with over a decade of expertise. Technically, the website employs modern frontend technologies such as Bootstrap, jQuery, and Font Awesome, with integration of Google Tag Manager and Cookiebot for analytics and cookie consent management. However, the absence of a valid SSL certificate and HTTPS support is a significant technical and security shortfall. The site is mobile-optimized and SEO-friendly but lacks advanced accessibility features. From a security perspective, the lack of HTTPS and related security headers severely impacts the security posture. No explicit security policies or incident response contacts are published, and DNS security features like DNSSEC and CAA are not enabled. Cookie consent is implemented, but GDPR compliance indicators are minimal. WHOIS data aligns well with the business claims, supporting legitimacy. Overall, the website is professional and content-rich but requires urgent improvements in security infrastructure to protect user data and enhance trust. Strategic recommendations include implementing HTTPS, enhancing security headers, publishing security policies, and improving GDPR compliance measures.

H

H World International

deutschehospitality.com

0

H World International is a large hospitality group operating multiple hotel brands with a focus on cultural diversity, tradition, and sustainable growth. The company targets hotel guests, business partners, franchisees, and job seekers, offering hotel accommodation, franchising, business travel, and development services. The website is professionally designed with clear navigation and good content relevance, supporting the company's market position as an established international hospitality group. Technically, the site uses standard web technologies and is hosted on Amazon AWS, but lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security concern. Security headers are partially implemented, but the absence of TLS protocols and HSTS reduces the site's security posture significantly. Privacy compliance is supported by a comprehensive privacy policy, but no cookie consent mechanism is present. Contact information is clearly provided, enhancing business credibility. Overall, the site is functional and professional but requires urgent security improvements to protect user data and maintain trust.

H

Hirsch Technology

hirsch-technology.com

0

HIRSCH Technology is a well-established manufacturer and technology leader in the EPS machine industry with over 35 years of experience. The company offers a comprehensive range of high-quality machines and turnkey plants for processing EPS, EPP, and molded pulp, serving multiple industrial sectors including construction, electrical, food, and packaging. Their market position is strong, supported by multiple locations across Europe and a parent group, HETech, which consolidates their industry presence. Technically, the website is built on a modern WordPress platform with various plugins for SEO, performance, and social media integration, but lacks a valid SSL certificate, which is a significant security concern. The security posture is basic with some security headers present but no active TLS protocols or strong cipher suites, exposing the site to potential risks. Privacy compliance is well addressed with comprehensive privacy and cookie policies and a consent mechanism in place. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

C

Certible GmbH

certible.com

0

Certible GmbH is an independent international certification body based in Austria, specializing in delivering certification exams worldwide through online proctoring, tablet-based exams, and test centers. The company holds recognized certifications such as ISO 9001, ISO/IEC 17024, and ISO 14001, and complies with GDPR, positioning itself as a trusted provider in the education and technology sectors. Their services cater to candidates, trainers, program owners, and employers, offering flexible exam scheduling and group certification options. The website reflects a professional and consistent brand with comprehensive content and clear navigation.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

V

Victaulic

victaulic.com

0

Victaulic is a globally recognized manufacturer specializing in mechanical pipe joining, flow control, and fire protection solutions tailored for complex piping applications. The company holds a strong market position as a leader in these sectors, serving commercial, industrial, and energy markets with a broad portfolio of products and services including customer training and virtual design tools. Their website reflects a professional and consistent brand image with comprehensive product information and clear contact details. Technically, the site is built on WordPress with modern SEO tools and interactive features, but suffers from slow load times and lacks advanced accessibility features. Security posture is weak due to the absence of a valid SSL/TLS certificate and missing security headers, exposing users to potential risks. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the website is functional and credible but requires urgent improvements in security and performance to enhance user trust and compliance.

M

Miraplast GmbH

miraplast.at

0

Miraplast GmbH is a medium-sized, family-owned manufacturing company based in Austria, specializing in plastic injection molding products and tooling. With over 50 years of experience, it operates two main brands, MiraHome and MiraTech, serving both consumer and industrial markets. The company maintains production sites in Austria and Hungary, emphasizing quality and sustainability. Technically, the website is built on WordPress with common plugins for SEO, multilingual support, and user management, hosted on Cloudways. However, the site lacks HTTPS, which is a critical security gap. Privacy and cookie policies are present and managed via Borlabs Cookie, but GDPR compliance is basic. Overall, the business is credible and well-positioned in its sector, but the website's security posture requires urgent improvement.

H

HARTING Technology Group

harting.com

0

HARTING Technology Group is a globally recognized leader in industrial connectivity solutions, serving sectors such as manufacturing, energy, transportation, and automation. The company offers a broad portfolio of connectors and related products, emphasizing innovation, quality, and regional manufacturing capabilities. Their website reflects a mature digital presence with comprehensive content and professional design, targeting industrial engineers and businesses. Technically, the site leverages modern frameworks like Angular and Contentful CMS, but suffers from slow load times and lacks a valid SSL certificate, which is a critical security concern. Privacy compliance is well addressed with clear policies and consent management. Security posture is weak due to missing SSL and security headers, exposing the site to potential risks. Overall, the business credibility is high, supported by a long domain history and consistent WHOIS data. Strategic improvements in security and performance are recommended to enhance trust and compliance.

V

VAV Versicherungs-Aktiengesellschaft

vav.at

0

VAV Versicherungs-Aktiengesellschaft is an established Austrian insurance company offering a broad range of insurance products for private customers, including auto, household, home, legal protection, accident, and liability insurances. The website provides online calculators and direct purchase options, supported by a professional design and consistent branding. The company enjoys strong market positioning evidenced by multiple industry awards and high customer satisfaction ratings. Technically, the website is built on Magnolia CMS and uses common JavaScript libraries such as jQuery and Slick Carousel. However, the site suffers from slow loading times and lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security vulnerability. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

M

MIT

marmit.co.za

0

MIT is a specialized manufacturer and supplier of professional and calibrated light and UV meters in Africa, with a strong market position as the only manufacturer of such instruments on the continent. They also provide custom solutions for radiation measurement and imaging sourced from global manufacturers, including the Goldilux series of light meters and Tissuegnostics products. The website is built on WordPress with Elementor and includes detailed product information, staff profiles, and partner testimonials, indicating a professional digital presence. However, the lack of HTTPS and security headers represents a significant security risk. The site uses Google Analytics for user tracking but lacks comprehensive privacy and cookie policies, which may impact compliance. Overall, the business appears credible and focused on niche industrial and scientific markets in South Africa, but improvements in security and privacy compliance are recommended.

The website score-events.com currently serves a Cloudflare security challenge page, preventing access to actual business content. This indicates the presence of a Web Application Firewall (WAF) protecting the site, which blocks automated or suspicious traffic. Due to this, no direct business information, contact details, or policies are accessible for analysis. The domain itself is mature, registered since 2008, with strong domain protection and consistent WHOIS data, suggesting a legitimate entity behind the domain. However, the lack of a valid SSL/TLS certificate and HTTPS support is a critical security deficiency. The technical infrastructure relies on Cloudflare for hosting and protection, but the absence of modern TLS protocols and HSTS reduces security posture. Overall, the site is inaccessible for content and business evaluation, resulting in a low AI score and limited insights.

The website muipr.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block, which prevents access to any meaningful content or business information. The domain appears to be parked or for sale, as indicated by the DNS nameservers pointing to domainmarket.com and the lack of any active website content. The absence of a valid SSL certificate and modern TLS protocols further diminishes the site's security posture. No privacy, cookie, or terms of service policies are present, and no contact information or forms are available. Overall, the site lacks any visible business presence or digital maturity, and the Cloudflare block suggests potential security concerns or abuse triggers.

M

Medek & Schörner GmbH

medek.at

0

Medek & Schörner GmbH is a medium-sized Austrian manufacturing company specializing in high-tech cable printing machines and coating systems for optical fibers. The company positions itself as a world market leader in its niche, targeting industrial B2B customers requiring advanced cable marking and coating solutions. Their website reflects a professional and consistent brand image with clear navigation and relevant content focused on their products and industry events. Technically, the website uses a PHP backend with nginx server, Bootstrap for styling, and includes marketing and analytics tools such as HubSpot and Google Tag Manager. However, the site lacks HTTPS support, which is a significant security concern. The security posture is weak due to the absence of SSL/TLS, no HSTS, and no modern TLS protocols enabled. Privacy compliance is basic, with a privacy policy and cookie consent mechanism present but no explicit GDPR compliance indicators or data protection officer contact. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

L

Legrand

legrand.com

0

Legrand is a global specialist in electrical and digital building infrastructures, offering a wide range of products and solutions tailored for various countries and global markets. The company positions itself as a leader in its industry, targeting both B2B and B2C customers seeking advanced electrical infrastructure solutions. The website reflects a professional and consistent brand image with good content quality and clear navigation, although some key contact information is not directly visible on the landing page. Technically, the website is built on Drupal 10 and leverages modern technologies such as Google Tag Manager and tarteaucitron.js for cookie consent management, hosted via Amazon CloudFront CDN. While the site shows basic mobile optimization and accessibility features, performance data is unavailable. SEO optimization is basic but present through meta tags and Open Graph data. From a security perspective, the site implements several important HTTP security headers and a content security policy. However, the lack of a valid SSL certificate and absence of TLS protocols severely undermine the security posture, exposing users to risks and reducing trust. No vulnerabilities like Heartbleed or POODLE were detected, but the SSL misconfiguration is a critical issue. Overall, the website demonstrates moderate digital maturity and business credibility but requires urgent remediation of SSL issues to improve security and user trust. Privacy compliance is good with clear cookie consent mechanisms and GDPR-aligned policies. Strategic improvements in security infrastructure and enhanced contact transparency would strengthen the company's online presence and risk posture.

D

dm drogerie markt

dm-drogeriemarkt.at

0

dm drogerie markt is a leading retail company in Austria specializing in drugstore products with a strong online presence. The website serves as a platform for product search, store availability, and customer engagement, targeting Austrian consumers. The technical infrastructure leverages modern JavaScript frameworks and integrates multiple third-party services for analytics, marketing, and user consent management. However, the website currently lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical security concern. Security headers are well implemented, but the absence of HTTPS severely impacts the overall security posture. Privacy compliance is minimal with no detected privacy or cookie policies in the provided content. Business credibility is strong given the consistent domain registration and professional website design.

W

Wilhelm Schwarzmüller GmbH

schwarzmueller.com

0

Wilhelm Schwarzmüller GmbH operates as one of Europe's largest providers of towed commercial vehicles, specializing in manufacturing and servicing premium transport solutions tailored to various industries such as construction, logistics, and tank transport. The company maintains a strong market position with a broad portfolio of over 150 vehicle types and a commitment to quality, evidenced by ISO certifications and industry awards. Their digital presence is robust, featuring multilingual support, active social media channels, and comprehensive customer service offerings including telematics and rental services. Technically, the website is built on WordPress with modern frameworks and SEO optimizations, although it lacks HTTPS encryption, which is a significant security concern. The security posture is weak due to the absence of SSL/TLS, HSTS, and other critical security headers, exposing users to potential risks. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the business credibility is high, supported by consistent branding, detailed contact information, and trust signals. Strategic improvements in security infrastructure are essential to enhance trust and protect user data.

S

SanLucar Fruit S.L.U.

sanlucar.com

0

SanLucar Fruit S.L.U. is a well-established company specializing in fresh fruits, vegetables, and related products, with a strong emphasis on quality, sustainability, and natural health benefits. The website reflects a mature digital presence with comprehensive product categories, corporate responsibility initiatives, and multilingual support targeting consumers and business partners globally. Technically, the site is built on WordPress with modern plugins and a reputable theme, offering good SEO and user experience. However, the absence of a valid SSL certificate and HTTPS severely impacts the security posture, exposing users to potential risks and undermining trust. Privacy policies and cookie consent mechanisms are present and appear GDPR compliant, supporting responsible data handling. Overall, while the business and content quality are high, urgent improvements in SSL/TLS implementation are necessary to enhance security and user trust.

S

STUDEN & CO Holding

sco-group.com

0

STUDEN & CO Holding is an international agribusiness holding company specializing in the processing, trading, and distribution of agricultural commodities such as sugar, edible oils, oilseeds, and grains. The company operates through subsidiaries including AGRANA-STUDEN Group and BIMAL Group, targeting agribusiness stakeholders and investors. The website presents a professional corporate image with multilingual support and clear business descriptions. Technically, the site is built on WordPress with common plugins like Yoast SEO and Visual Composer, but suffers from outdated PHP and lack of HTTPS, impacting security and performance. Security posture is weak due to missing SSL, no modern TLS support, and absence of advanced security headers. Privacy compliance is minimal with no visible privacy policy but a cookie consent banner is present. Overall, the site is functional and credible but requires urgent security improvements to protect user data and enhance trust.

A

asa technology Produktions- und Vertriebs GmbH

asahydraulik.com

0

asa technology Produktions- und Vertriebs GmbH is a mature Austrian manufacturing company specializing in hydraulic cooling and connection technologies. Their website showcases a broad portfolio of heat exchangers, pumps, valves, and connection solutions targeting industrial and mobile equipment manufacturers. The company positions itself as an innovative leader with over 40 years of experience and a global footprint. Technically, the website is built on Drupal 9 with modern front-end libraries but lacks HTTPS, which is a critical security flaw. The site includes a cookie consent mechanism but lacks explicit privacy and terms of service pages. Contact information is clearly provided, enhancing business credibility. Security headers are partially implemented, but the absence of SSL/TLS and other modern security features significantly lowers the security posture. Overall, the website is professional and content-rich but requires urgent security improvements.

LKH Graz II is a large healthcare provider operating multiple hospital locations in and around Graz, Austria. The organization focuses on delivering high-quality medical and human care services to patients while also serving as a significant regional employer. The website serves as an information portal for patients, partners, and staff, providing access to services, news, and contact information. Technically, the site is built on TYPO3 CMS and uses Matomo for analytics, with a cookie consent mechanism compliant with GDPR. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks. The site also suffers from slow load times and lacks modern security headers, which should be addressed promptly to improve security posture and user trust.

The website for thesteel.com is currently inaccessible due to geographic blocking implemented by an Amazon CloudFront distribution, resulting in a 403 error page. This prevents access to any meaningful content, metadata, or business information. The domain is registered and uses AWS infrastructure with Microsoft Outlook for email services, indicating some level of legitimate setup. However, the absence of a valid SSL certificate and lack of HTTPS support significantly weaken the security posture. No privacy, cookie, or terms of service policies are present, and no contact information or business details are available on the site. Overall, the website's digital maturity is low, with poor content quality and minimal technical implementation visible due to blocking.

The website for dow.com is currently inaccessible, returning an error page indicating a possible CDN or WAF blocking or server-side issue. Dow is a large multinational company operating primarily in the energy, manufacturing, and chemical sectors, serving industrial clients and business partners. The domain registration data is consistent with the company's identity and history, confirming legitimacy. However, the website lacks a valid SSL certificate and HTTPS support, which severely impacts its security posture. No privacy, cookie, or terms of service policies are detectable, and no contact information or social media links are present in the accessible content. The technical infrastructure appears to rely on Akamai CDN and Microsoft Outlook for email services, but the website performance is slow and minimal resources are loaded. Overall, the site is currently not usable for end users or business interactions due to the error page and lack of security features.

The website justiz-marketing.com currently serves as a minimal redirect page with no substantive content, metadata, or business information. The domain is mature, registered since 2015 with GoDaddy, and shows strong domain protection status. However, the lack of HTTPS support and absence of any meaningful website content or contact details significantly reduce the site's credibility and security posture. Technically, the site lacks modern security practices such as SSL/TLS encryption, security headers, and DNSSEC. There are no privacy or cookie policies, which impacts GDPR compliance and user trust. Overall, the website appears underdeveloped or possibly in a staging state, limiting its business and security effectiveness.

K

KEYENCE CORPORATION OF AMERICA

keyence.com

0

KEYENCE CORPORATION OF AMERICA operates a comprehensive and professionally designed website focused on industrial automation products including sensors, machine vision systems, and measuring instruments. The company is positioned as a leading enterprise in the manufacturing and technology sectors, targeting industrial and factory automation professionals. The website demonstrates strong branding, clear navigation, and extensive product information, supported by a mature domain and consistent WHOIS data. Technically, the site uses Apache server technology, jQuery, and Akamai CDN, with modern marketing and analytics tools such as Google Tag Manager and Cookiebot for privacy compliance. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, significantly impacting the security posture score. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance with GDPR standards. Overall, the site is trustworthy and professional but urgently requires SSL implementation to enhance security and user trust.

MBM Intellectual Property Law LLP is a Canadian intellectual property law firm providing services such as patents, trademarks, copyright protection, and litigation. The firm targets Canadian and international clients and operates multiple offices across Canada. The website content reflects a professional legal service provider with a moderate market position in the IP law sector. Technically, the website is built on outdated Joomla 1.7 CMS and PHP 5.5.9, lacks HTTPS encryption, and shows no evidence of modern security or privacy compliance practices. Security posture is weak due to missing SSL, outdated software, and lack of security headers. Privacy compliance is poor with no visible privacy or cookie policies. Overall, the website presents moderate business credibility but requires urgent technical and security improvements to protect client data and enhance trust.

THQ Nordic GmbH is a global video game publisher and developer founded in 2011, operating primarily in the media industry with a focus on video game publishing, development, and sales. The company maintains a strong market position with multiple subsidiaries and a broad portfolio of game titles, targeting gamers, content creators, and trade partners. The website reflects a professional business model with clear navigation, consistent branding, and a comprehensive online presence including an online store and limited print runs. Technically, the site is built on Drupal 9 with modern front-end libraries and integrates Google Analytics for user tracking. However, the absence of a valid SSL certificate and HTTPS support significantly undermines the security posture. Security headers are present but insufficient to compensate for the lack of encryption. Privacy compliance is well addressed with a cookie consent mechanism and clear privacy and terms of service pages. The WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

L

Linz Center of Mechatronics GmbH

lcm.at

0

Linz Center of Mechatronics GmbH (LCM) is a medium-sized Austrian research and development service provider specializing in mechatronics and manufacturing technologies. The company supports medium and large enterprises in sectors such as machinery, automotive, and medical technology by integrating scientific research into practical, economically viable solutions. Their services include integrated hydraulic and electrical drive systems, vibration technology, Industrial IoT, measurement services, and transformation consulting. The website is professionally designed, multilingual, and targets industrial clients seeking innovation and sustainability improvements. Technically, the site runs on WordPress with the Divi theme and includes modern SEO and multilingual plugins, but suffers from slow load times and lacks a valid SSL certificate, which impacts security posture. Security measures include GDPR-compliant cookie consent and captcha-protected contact forms, but the absence of HTTPS and security headers are critical vulnerabilities. Overall, LCM presents a credible and professional digital presence aligned with its business objectives, but should urgently address SSL and security header issues to improve trust and compliance.

E

EBOS Healthcare

eboshealthcare.com.au

0

EBOS Healthcare Australia operates as a leading distributor of medical supplies and equipment targeting primary care, aged care, and hospital sectors within Australia. The website presents a comprehensive catalog of healthcare products and maintains a professional online presence with consistent branding and detailed business descriptions. The company leverages modern marketing and analytics tools including Google Analytics, Google Tag Manager, Marketo, and Application Insights, indicating a mature digital marketing strategy. However, the technical infrastructure shows critical security shortcomings, notably the absence of a valid SSL certificate and HTTPS support, which severely impacts the site's security posture and user trust. The lack of security headers and cookie consent mechanisms further exposes the site to potential risks and compliance issues. Overall, while the business model and content quality are strong, the security vulnerabilities present significant risks that should be addressed promptly to protect user data and maintain regulatory compliance.

C

Home Page - ContourGlobal

contourglobal.com

0

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 25 security findings identified across all modules.

D

Dr. Thomas Schneider

dr-thomas-schneider.com

0

Dr. Thomas Schneider operates a specialized medical practice focused on prevention, sports medicine, occupational and traffic medicine in Lauf a.d.P., Germany. The website presents a comprehensive range of healthcare services targeting health-conscious individuals, athletes, and local businesses. The practice emphasizes holistic health coaching, orthomolecular medicine, and complementary therapies such as acupuncture and chiropractic care. Technically, the site is built on TYPO3 CMS with common JavaScript libraries like jQuery and Slick Carousel, hosted likely by Ionos. However, the website suffers from critical security shortcomings, notably the absence of HTTPS and a valid SSL certificate, exposing visitors to potential risks. Privacy compliance is minimal, with no cookie consent mechanisms or detailed GDPR indicators. Overall, the site is professionally designed and content-rich but requires urgent security and privacy improvements to meet modern standards.

H

Hirtenberger Defence Systems

hirtenberger.com

0

Hirtenberger Defence Systems is a medium-sized manufacturing company specializing in the development and production of mortar systems and related defense technologies. The company operates globally, targeting military and defense sector customers with a comprehensive product range including mortar ammunitions, weapon systems, and auxiliary equipment. The website reflects a professional business presence with consistent branding and good content relevance, though it lacks some advanced features such as detailed contact information and comprehensive privacy compliance mechanisms. Technically, the website is built on WordPress using the Divi theme and incorporates SEO tools like Rank Math. However, the site suffers from slow load times and basic mobile optimization. The hosting provider is hosttech.at, and the DNS setup is standard without advanced security features like DNSSEC or CAA records. From a security perspective, the website has critical shortcomings including the absence of a valid SSL certificate, lack of HTTPS support, and missing security headers. These issues significantly reduce the security posture and expose the site to potential risks. Privacy compliance is minimal, with a basic privacy policy present but no cookie consent mechanism or GDPR compliance indicators. No incident response or vulnerability disclosure information is available, which may impact trust and security readiness. Overall, the website is functional and presents the business adequately but requires urgent improvements in security and privacy compliance to enhance trustworthiness and protect user data. Strategic recommendations include implementing HTTPS, enabling security headers, and establishing clear privacy and incident response policies.

I

ISG

isg-one.com

0

ISG is a global AI-centered technology research and IT advisory firm providing comprehensive sourcing, benchmarking, governance, and research services to enterprise clients. The company positions itself as a leader in AI-driven technology advisory, offering SaaS platforms to govern third-party relationships and benchmark IT landscapes. The website content is professionally designed, rich in relevant business information, and targets enterprises seeking operational excellence through technology. Technically, the site employs modern JavaScript frameworks and integrates multiple third-party services, but suffers from slow load times and lacks a valid SSL certificate, which critically impacts security posture. Privacy and cookie policies are present with consent mechanisms, supporting GDPR compliance. Social media presence is strong, enhancing trust and engagement. However, the absence of direct contact emails or phone numbers limits immediate contact options.

G

Grassfish

grassfish.com

0

Grassfish is a mature and established digital in-store platform and consulting company headquartered in Sweden, with additional presence in Austria. The company offers a comprehensive suite of digital signage and customer experience solutions tailored for retail brands and stores, positioning itself as the leading digital in-store platform in Europe trusted by over 500 brands. Their business model combines a SaaS platform with strategic, technical, and operational consulting services, targeting brands seeking to enhance their physical retail environments with digital innovation. Technically, the website is built on WordPress, leveraging modern web technologies and CDNs for content delivery, but currently suffers from critical SSL/TLS misconfigurations that undermine secure communications. The security posture is weakened by the absence of a valid SSL certificate and lack of modern TLS protocols, posing significant risks to data confidentiality and user trust. Privacy compliance is well addressed with clear cookie consent mechanisms and comprehensive privacy policies aligned with GDPR requirements. Overall, while the business and content quality are excellent, the critical security gaps notably reduce the website's trustworthiness and require urgent remediation. Strategic recommendations include immediate SSL certificate installation, enabling modern TLS protocols, and enhancing security headers and session management to safeguard user data and maintain compliance.

T

timeCOM GmbH

bfit.at

0

timeCOM GmbH is a small Austrian technology company specializing in time management solutions including personnel time tracking, project time tracking, workflow, personnel deployment planning, access control, and payroll export. With over 25 years of experience, they serve business clients primarily in Austria and maintain partnerships with notable software and hardware providers such as Atoss AG, Datafox GmbH, and PCS GmbH. The website is built on WordPress with Elementor and provides clear contact information but lacks critical security and privacy features such as HTTPS and privacy policies. Technically, the site uses standard web technologies but suffers from missing SSL/TLS, which is a significant security risk. No web application firewall or blocking mechanisms are detected, and the site is fully accessible.