Security Directory

B

Hotel de charme en normandie honfleur deauville trouville SITE OFFICIEL - HOTEL VUE SUR MER Villerville bord de mer - Bellevue Hotel

bellevue-hotel.fr

0

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website aerialyogaflow.com is currently inaccessible, returning an HTTP 403 Forbidden error with minimal HTML content. This indicates that the site is either restricted or blocked from public access. There is no visible business information, metadata, or structured data to analyze. The domain is registered but lacks DNS records and a valid SSL certificate, resulting in no HTTPS support. This severely limits the ability to assess the company's business model, services, or market position. Technically, the site shows poor infrastructure and security posture with no modern technologies or security best practices implemented. Overall, the site presents a high risk due to lack of accessibility, missing security controls, and absence of compliance documentation.

F

Frauenthal Karriere – In Österreich ist die Frauenthal Handel Gruppe die Nummer 1 im Großhandel für Sanitär, Heizung und Installationstechnik. Werde ein Teil von uns!

frauenthal-karriere.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 2 critical issues require immediate attention. Total of 29 security findings identified across all modules.

F

Frauenthal Handel Gruppe – Die Frauenthal Handel Gruppe ist der Partner für die Sanitär, Heizung und Installationstechnik Großhandelsmarken SHT, ÖAG und Kontinentale sowie für den Online-Elektro

frauenthal-handel.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 2 critical issues require immediate attention. Total of 28 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

ISZ Markt

isz-markt.at

0

ISZ Markt is a leading Austrian wholesale distributor specializing in installer supplies, heating, electrical, and home technology products. With 70 locations across Austria and a strong parent company, Frauenthal Handel Gruppe AG, ISZ Markt serves professional installers and contractors with a broad product range and fast delivery services. The website is professionally designed using WordPress and Elementor, featuring comprehensive content, structured data, and good SEO practices. However, the website suffers from a critical security issue due to an invalid SSL certificate and lack of enabled TLS protocols, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and detailed privacy policy. Contact is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, the site is credible and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

S

SHT WEBSHOP

sht.at

0

The website sht.at operates as an e-commerce webshop branded as SHT, targeting German-speaking customers. It offers online product sales but lacks detailed business information, contact details, or policies on the homepage. The technical infrastructure is based on modern web technologies such as Next.js and React, with Craft CMS APIs referenced, indicating a decoupled CMS backend. However, performance metrics are missing or incomplete, and mobile optimization and accessibility are basic. Security posture is poor due to the absence of a valid SSL certificate, no HTTPS support, and missing security headers, exposing the site to significant risks. Privacy compliance is lacking, with no privacy or cookie policies detected, and no GDPR indicators present. The domain's DNS configuration is suspiciously empty, raising concerns about legitimacy and operational maturity. Overall, the site scores low on trustworthiness and security, requiring urgent improvements in SSL deployment, policy transparency, and DNS configuration.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

S

smartpoint: Ihr Partner für digitale Unternehmenslösungen

smartpoint.at

0

Security assessment completed with an overall score of 0/100 (unknown risk). 5 critical issues require immediate attention. Total of 27 security findings identified across all modules.

H

Herbst Kinsky Rechtsanwälte

herbstkinsky.at

0

Herbst Kinsky Rechtsanwälte is a medium-sized Austrian law firm specializing in economic, corporate, and financial law with offices in Vienna and Linz. The website presents a professional image with clear business descriptions, targeting businesses and professionals seeking legal advisory services in Austria. The firm offers a broad range of legal services including M&A, venture capital, banking and capital markets law, and labor law. Technically, the website is built on WordPress with a custom theme and SEO framework, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which severely impacts security posture. The site lacks modern TLS protocols, security headers, and cookie consent mechanisms, which are important for compliance and user trust. Overall, the website is functional and well-structured but requires urgent security improvements to protect user data and enhance trust.

Royal TenCate is a large multinational manufacturing group specializing in technical textiles and composite materials. The company operates through five independent subsidiaries, each focusing on niche markets such as protective fabrics, sports surfaces, outdoor textiles, survivability solutions, and advanced composites. The website serves as a portal directing visitors to these subsidiaries' individual sites. Technically, the website is built on the HubSpot CMS platform and hosted behind Cloudflare, but it lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security concern. The site has basic SEO and accessibility features but lacks privacy and cookie policies, contact information, and security best practices such as vulnerability disclosure mechanisms. Overall, the security posture is weak due to missing HTTPS and modern TLS protocols, which significantly impacts trust and compliance. Strategic improvements in SSL deployment, privacy compliance, and security policies are recommended to enhance the website's credibility and user trust.

The website for restaurantlulu.com is minimal and currently only serves as a redirect to a /lander page with no additional content or metadata. The business appears to be in the hospitality sector, likely a restaurant, but no detailed information about services, company background, or contact details is available. The technical infrastructure is basic, with DNS hosted by Namefind and no valid SSL certificate, resulting in no HTTPS support. This severely impacts the security posture and trustworthiness of the site. Security best practices are not implemented, with no security headers, no HSTS, and no vulnerability disclosures. Overall, the site lacks essential privacy and compliance policies, making it unsuitable for professional or customer-facing use in its current state.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website skytoxicology.com currently presents no accessible content beyond a simple redirect to a /lander path, with no metadata, forms, or business information available. The domain is registered but lacks DNS records and a valid SSL certificate, indicating a very low level of digital maturity and technical infrastructure. Security posture is poor due to the absence of HTTPS, security headers, and other best practices. Overall, the site appears inactive or under construction, resulting in a high risk profile and minimal trustworthiness. Strategic recommendations include establishing proper DNS records, implementing SSL/TLS, and developing meaningful website content to improve business credibility and security.

M

Mark Metallwarenfabrik GmbH

mark.at

0

Mark Metallwarenfabrik GmbH is a medium-sized manufacturing company based in Austria specializing in metal products. The company maintains a professional website showcasing its global footprint, technologies, sustainability efforts, and career opportunities. The site targets industry professionals, potential employees, and partners. Technically, the website is built on WordPress with modern plugins such as Elementor and Jet Engine, but lacks a valid SSL certificate, which is a critical security shortfall. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Social media presence is active, enhancing brand visibility. However, the absence of HTTPS and proper TLS configuration significantly impacts the security posture and overall trustworthiness of the site.

The website comvexx.com is currently inaccessible beyond a Cloudflare Web Application Firewall (WAF) challenge page that requires JavaScript and cookies to proceed. This effectively blocks access to any substantive content, business information, or user interaction elements. The domain is properly configured with Cloudflare DNS and Microsoft Outlook for email services, but the absence of a valid SSL certificate and HTTPS support is a critical security deficiency. The site lacks visible privacy, cookie, or terms of service policies, and no contact or business details are presented on the landing page. Overall, the digital maturity of the site is low due to the lack of accessible content and security best practices implementation.

T

Tiffany & Co.

tiffany.com

0

Tiffany & Co. is a globally recognized luxury jewelry brand with a strong market position under the LVMH parent company. The website serves as a comprehensive e-commerce platform offering a wide range of fine jewelry, gifts, and accessories, supported by robust customer service including concierge and appointment booking. Technically, the site leverages Adobe Experience Manager CMS, Akamai CDN, and modern JavaScript frameworks, delivering a fast and mobile-optimized user experience. However, the security posture is critically weakened by the absence of a valid SSL certificate and lack of HTTPS/TLS support, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but urgently needs to remediate its SSL/TLS configuration to ensure secure communications.

K

Kommunikationskunst

kommunikationskunst.at

0

Kommunikationskunst is a small Austrian marketing and communication agency led by Robert Seeger, with over 15 years of experience in innovative marketing solutions. The company offers a range of services including employer branding, keynotes, workshops, social media management, creative campaigns, and seminars. The website reflects a professional and consistent brand image targeting businesses seeking bold and effective communication strategies. Technically, the site is built on WordPress using OptimizePress and Yoast SEO, but suffers from a critical lack of HTTPS, impacting its security posture significantly. While the site includes basic privacy and cookie policies with GDPR consent mechanisms, it lacks explicit security and incident response policies. Overall, the business appears legitimate and established, but the absence of SSL/TLS is a major security concern that should be addressed promptly.

B

ByteSource Technology Consulting GmbH

bytesource.net

0

ByteSource Technology Consulting GmbH is a medium-sized Austrian technology consulting firm specializing in cloud migration, Atlassian ecosystem services, DevOps, agile software development, and AI-driven business transformation solutions. Positioned as a leading Atlassian Platinum Solution Partner and AWS Advanced Tier Services Partner in Austria, ByteSource serves enterprises and medium to large businesses with a comprehensive portfolio of technology consulting and software development services. The company emphasizes innovation, security, and operational excellence, supported by certifications such as ISO 27001 and TISAX AL3. Technically, the website is built on modern frameworks including Next.js and is hosted on Amazon AWS infrastructure leveraging S3 and CloudFront CDN. The site integrates various marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Zoho SalesIQ, and Leadforensics, reflecting a mature digital marketing strategy. However, performance metrics indicate slow loading times, and while mobile optimization and accessibility are excellent, there is room for improvement in performance. From a security perspective, the site lacks a valid SSL certificate and does not support TLS protocols, which is a critical vulnerability impacting the overall security posture. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly reduces the security score. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, ByteSource presents a professional and trustworthy online presence with strong business credibility and technical maturity, but the lack of HTTPS and proper SSL/TLS configuration poses a significant risk. Strategic recommendations include immediate remediation of SSL/TLS issues, enhancement of security headers, and performance optimization to improve user experience and security posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

U

Uponor Suomi Oy

uponor.com

0

Uponor Suomi Oy is a leading international company specializing in building and infrastructure water transport solutions. The company offers a wide range of products and services including building technology, infrastructure products, project services, and customer support. It operates under the parent company Georg Fischer (GF) Group and targets professionals in construction, infrastructure planning, and homeowners. The website is well-designed, content-rich, and provides comprehensive information about products, services, and corporate policies. Technically, the site uses modern frameworks like React and Kentico CMS, with integrations for analytics and marketing tools. However, a critical security issue is the absence of a valid SSL/TLS certificate, exposing users to risks. Security headers are well implemented, but the lack of HTTPS significantly lowers the security posture. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to ensure secure user interactions.

The Stadtgemeinde Mödling website serves as the official digital portal for the city of Mödling, Austria, providing residents and visitors with comprehensive municipal information, news, events, and public services. The site targets local citizens and stakeholders, offering easy access to administrative contacts, service forms, and cultural activities. The business model is that of a government entity focused on transparency and community engagement. Technically, the website employs a custom RIS CMS platform with common web technologies such as jQuery, Bootstrap, and FontAwesome, and integrates Matomo for analytics. However, the absence of HTTPS is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but the lack of SSL/TLS and modern protocols significantly lowers the security posture. Privacy compliance is moderate, with a clear privacy policy but no cookie consent mechanism. Overall, the site is professional and trustworthy but requires urgent security upgrades.

I

Interenergo d.o.o.

interenergo.si

0

Interenergo d.o.o. is a medium-sized energy company based in Slovenia, operating as part of the Austrian Kelag group since 2009. The company focuses on renewable energy investments, energy efficiency solutions, power purchase agreements, and energy trading across Southeast Europe. Their website is professionally designed with clear navigation and bilingual support, targeting businesses and investors interested in green energy solutions. Technically, the site uses modern JavaScript libraries and cookie consent mechanisms but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS significantly lowers the security posture. Contact information and privacy policies are clearly provided, supporting GDPR compliance. Overall, the website is functional and trustworthy but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website at compuware.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that blocks access to actual content. No meaningful business information, metadata, or contact details are available on the landing page. The site lacks a valid SSL certificate and does not support any TLS protocols, resulting in a poor security posture. The absence of privacy, cookie, or terms of service policies further reduces compliance and trustworthiness. Overall, the site appears either misconfigured or inactive, limiting any substantive analysis of its business or technical maturity.

L

Linz Textil Holding AG

linz-textil.at

0

Linz Textil Holding AG is a leading European manufacturer specializing in yarns, fabrics, and terry products, serving the textile industry with a strong presence across multiple European countries through its subsidiaries. The company’s website reflects a professional and consistent brand image, targeting textile industry customers and partners. The business model focuses on manufacturing and distribution with a clear emphasis on innovation, tradition, and sustainability. Technically, the website is built on TYPO3 CMS with standard web technologies including jQuery, and it incorporates modern consent management and analytics tools such as Usercentrics and Google Analytics 4. However, the website suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture and trustworthiness. Despite this, the site includes comprehensive legal and privacy documentation, indicating good privacy compliance. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

B

Bankhaus Spängler

spaengler.at

0

Bankhaus Spängler is Austria's oldest private bank, providing private banking, family management, financing, and real estate services across multiple regional offices. The website is professionally designed, content-rich, and targets private banking clients and institutional investors primarily in Austria. Technically, the site uses TYPO3 CMS and integrates Cookiebot for cookie consent, but critically lacks HTTPS/SSL encryption, exposing users to security risks. Security headers are partially implemented, but the absence of SSL significantly lowers the security posture. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the business credibility is strong with clear contact information and trust indicators. The domain registration data aligns well with the business claims, confirming legitimacy.

L

Logwin AG

logwin-logistics.com

0

Logwin AG operates an international logistics and transportation services website offering a broad range of services including sea freight, air freight, warehousing, and transport management. The company targets businesses requiring reliable logistics solutions and positions itself as a professional and dedicated provider with a worldwide network. The website is built on TYPO3 CMS and uses modern frontend technologies such as jQuery and Fancybox, providing a good user experience with clear navigation and professional design. However, the technical infrastructure shows weaknesses, notably the absence of a valid SSL certificate and lack of TLS protocol support, which significantly impacts the security posture. Security headers are partially implemented, and privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is limited to a contact form, with no explicit emails or phone numbers found. Overall, the website is functional and professional but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

J

Jung Eco Building Solutions GmbH

jung-ingenieure.com

0

Jung Eco Building Solutions GmbH is a specialized engineering consultancy focused on climate engineering, green building design, and energy consulting primarily serving clients such as builders, planners, and architects in Germany. The company offers tailored energy and climate concepts, building envelope optimization, and certification services for sustainable buildings. Their market position is that of a niche player in the energy and sustainability sector with a small company size and a professional online presence. Technically, the website is built on WordPress with common libraries like Bootstrap and jQuery, but lacks HTTPS and modern security configurations, which is a significant risk. The absence of cookie consent mechanisms and incident response information indicates partial GDPR compliance. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

H

HOM Furniture

homfurniture.com

0

HOM Furniture is a large regional furniture retailer primarily serving the upper Midwestern United States, including Minnesota and surrounding states. The company offers a broad range of furniture, home décor, and design services both online and in physical stores. Their digital presence includes advanced features such as augmented reality visualization and room planning tools, indicating a moderate level of digital maturity. However, the website lacks a valid SSL certificate, which is a critical security shortfall that undermines user trust and data protection. While privacy policies are present, cookie consent mechanisms are missing despite the use of tracking and analytics tools. The site uses modern web technologies including MeteorJS and React, but performance data is lacking, suggesting potential optimization opportunities. Overall, the business appears legitimate and well-established, but security improvements are urgently needed to protect customer data and enhance trust.

REFLECTIONS Research & Consulting is a small consulting firm based in Austria, led by Franz Kühmayer, offering expertise, consulting services, visionary insights, references, and keynote speaking. The website is minimalistic with basic content and navigation but lacks critical security and privacy features. Technically, the site runs on Apache with simple HTML and CSS, but it lacks HTTPS and modern security headers, exposing visitors to potential risks. No privacy or cookie policies are present, and no contact information is provided, which impacts trust and compliance. Overall, the website's security posture is weak, and the digital maturity is low, requiring urgent improvements to secure communications and comply with privacy regulations.

The domain aisha.fi currently hosts a parked domain placeholder page provided by Hostinger, indicating no active business or website content. The page promotes Hostinger's hosting services and provides guidance for domain owners to set up hosting and manage nameservers. The technical infrastructure relies on Bootstrap, jQuery, Font Awesome, and Google Tag Manager, hosted on Hostinger with DNS managed by Cloudflare. However, the site lacks a valid SSL certificate and does not support HTTPS, which severely impacts security posture. No privacy, cookie, or terms of service policies are present, and no contact information or business details are provided, limiting trust and credibility. Overall, the site is non-operational as a business website and serves only as a parked domain.

The website rublys.com currently serves only a minimal placeholder page indicating hosting on host22.ssl-gesichert.at with no meaningful content or business information. The technical infrastructure is basic, running on Apache with an outdated PHP 5.3.29 version and no SSL/TLS certificate, resulting in unencrypted HTTP traffic. DNS records show standard MX entries using Google and Zendesk mail services, but no DNSSEC or CAA records are configured. Security posture is weak due to lack of HTTPS, missing security headers, and no HSTS policy. There are no privacy or cookie policies, no contact information, and no visible business or compliance documentation. Overall, the site appears inactive or improperly configured for public use, presenting significant security and trust concerns.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website radarcs.com is currently inaccessible beyond a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information. The domain is registered but lacks DNS records and a valid SSL certificate, resulting in no HTTPS support. The website's technical infrastructure is minimal and does not support modern security protocols. Security headers are present but insufficient to compensate for the lack of SSL and accessible content. No privacy, cookie, or terms of service policies are found, and no contact information or business details are available. Overall, the website exhibits a very low level of digital maturity and trustworthiness, with critical security and accessibility issues.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

Flexprint (part of delfortgroup AG)

delfortflexibles.com

0

Flexprint is a medium-sized, family-owned manufacturing company specializing in flexible packaging solutions for food, non-food, and tobacco products primarily in Eastern Europe. The company is part of the larger delfortgroup AG and has over 14 years of experience with a strong market presence in 40 countries and 200 clients. The website is built on WordPress using the Salient theme and WPBakery page builder, with a moderate level of technical sophistication but lacks a valid SSL certificate, which is a critical security concern. The site implements a cookie consent mechanism compliant with GDPR and links to a comprehensive privacy policy hosted on the parent company's domain. However, there is no visible terms of service or incident response policy. Security posture is weak due to missing HTTPS and modern TLS protocols, no HSTS, and lack of security headers. Business credibility is supported by multiple certifications and positive customer testimonials. Strategic improvements in security infrastructure and transparency policies are recommended to enhance trust and compliance.

G

Generasitogel

qpsneuro.com

0

The website presents itself as an online slot gaming platform targeting Indonesian users with QRIS payment options and low minimum deposits. It is built on the Squarespace platform and hosted behind Cloudflare. However, the site lacks a valid SSL certificate, exposing users to security risks. There are no privacy or cookie policies, and contact information is minimal, limited to a single email address found in a script, which appears to be a user account email rather than official contact. The site content is promotional but basic, with limited trust indicators and no social media presence. Performance data is missing, and the site shows poor privacy compliance and security posture. Overall, the site appears functional but lacks critical security and compliance features, reducing its trustworthiness and professionalism.

The website metacure.com currently serves only a minimal HTML page that immediately redirects visitors to a /lander path, with no visible content, metadata, or business information. The domain is registered and resolves to IP addresses likely hosted on Amazon AWS, but lacks a valid SSL certificate and does not support HTTPS, exposing visitors to security risks. No privacy, cookie, or terms of service policies are present, and no contact or company information is available on the site. The technical infrastructure is minimal and lacks modern security and performance optimizations, resulting in a poor user experience and low trustworthiness. From a security perspective, the absence of HTTPS and security headers, combined with no DNSSEC or CAA records, indicates a weak security posture. The domain's DNS configuration is incomplete, with no valid MX records, which may affect email deliverability and trust. No analytics or tracking technologies are detected, suggesting minimal digital maturity. Overall, the site appears to be either under development, abandoned, or a placeholder with no active business presence. Given these findings, the overall risk level is high due to lack of encryption, absence of policies, and no verifiable business identity. Strategic recommendations include obtaining and configuring a valid SSL certificate, implementing security best practices such as HSTS and security headers, publishing privacy and cookie policies to comply with regulations, and providing clear contact and business information to improve credibility and trust.

P

Peschke

peschkedesign.at

0

Peschke Design GmbH is a well-established design agency based in Vienna, Austria, specializing in product design, UX/UI, app development, 3D visualization, and industrial design. With over 50 years of experience and a strong portfolio of reputable clients such as Carl Zeiss AG, ENGEL AUSTRIA GmbH, and Austrian Airlines, the company positions itself as a trusted partner for digital transformation and innovative design solutions. Their business model focuses on delivering comprehensive design and development services tailored to client needs, supported by a professional and content-rich website that targets businesses seeking high-quality design expertise. Technically, the website is built on WordPress, hosted on WP Engine, and uses Cloudflare as a CDN and proxy. It employs modern web technologies including React, jQuery, and Swiper.js, and supports multilingual content via WPML. SEO and accessibility are well addressed with Yoast SEO and adherence to WCAG guidelines. However, performance metrics are not available, though mobile optimization and navigation clarity are good. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. No TLS protocols are enabled, and security headers are minimal. While cookies are set with secure and HttpOnly flags, the absence of HTTPS exposes users to potential interception risks. Privacy compliance is strong with GDPR-aligned policies and a cookie consent mechanism. No explicit security or incident response policies are published. Overall, the website demonstrates high professionalism and business credibility but suffers from a critical security misconfiguration regarding SSL/TLS. Addressing this would significantly improve the security posture and trustworthiness of the site.

A

Aug. RATH jun. Gmbh

rath.at

0

RATH Austria is a well-established manufacturer specializing in high-quality chamotte stones and related refractory products for heating and stove systems, with a history spanning over 130 years. The company targets stove builders, dealers, and industrial clients primarily in Austria and Europe. Their website is built on TYPO3 CMS and provides comprehensive product and service information, including planning services for stove builders. However, the technical infrastructure shows critical security gaps, notably the absence of HTTPS, which exposes users to significant risks. The site employs some security headers but lacks modern SSL/TLS protocols and DNS records, indicating potential configuration issues. Privacy compliance is partial, with a privacy policy and terms of service present but no cookie consent mechanism. Overall, the business credibility is solid, but the security posture requires urgent improvement to protect user data and maintain trust.

Austro Engine GmbH is a medium-sized Austrian manufacturer specializing in innovative aircraft engines, including jet fuel piston engines and rotary engines for UAV and APU applications. As part of the Diamond Aircraft Group, it holds recognized certifications and serves a global aviation market including private owners, flight schools, and special mission operators. The website is professionally designed, content-rich, and well-branded, reflecting a strong market position in general aviation engine manufacturing. Technically, the site uses TYPO3 CMS and integrates modern marketing and analytics tools, but suffers from poor performance and lacks HTTPS, which is a critical security concern. Security headers are minimal and SSL/TLS configuration is inadequate, exposing the site to risks. Privacy compliance is well addressed with clear policies and consent management. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect users and enhance trust.

A

Aumayr GmbH

aumayr.com

0

Aumayr GmbH is a well-established Austrian manufacturing company specializing in ventilation and metal technology solutions with over 50 years of experience. The company offers a broad range of products and services including custom ventilation components, metal fabrication, installation, and maintenance. Their market position is strong regionally, supported by certifications such as ISO and the Austria Gütezeichen. The website reflects a professional digital presence with good content quality and clear navigation targeting industrial clients and business customers. Technically, the site is built on WordPress with modern plugins but lacks a valid SSL certificate, which is a critical security gap. Privacy compliance is well addressed through the use of a consent management platform and clear privacy and cookie policies. Overall, the business credibility is high, but the lack of HTTPS significantly impacts the security posture and overall risk profile.

N

NETxAutomation Software GmbH

netxautomation.com

0

NETxAutomation Software GmbH is a medium-sized company specializing in building management software and multi-protocol gateways for medium-sized and enterprise building automation projects. With over 20 years of experience and a presence in more than 100 countries, the company offers a comprehensive suite of products including the NETx BMS Platform and NETx Multi Protocol Server, alongside services such as project analysis, commissioning, and driver development. Their target audience includes system integrators, electrical engineers, and end customers seeking integrated building automation solutions. Technically, the website is built on Joomla CMS with jQuery and FontAwesome libraries, served by an Apache 2.4.62 server. However, the site lacks a valid SSL certificate and does not support HTTPS or modern TLS protocols, which significantly impacts its security posture. Performance metrics are not available, but the site shows basic mobile optimization and accessibility features. SEO is basic but includes meta tags and alternate language links. From a security perspective, the site implements some security headers such as Strict-Transport-Security and X-Content-Type-Options, and uses HttpOnly cookies. However, the absence of a valid SSL certificate, lack of TLS support, and missing advanced security headers reduce the overall security score. No explicit security or incident response policies are found, and no vulnerability disclosure or security.txt file is present. Overall, the website is professional and content-rich but suffers from critical security shortcomings due to missing HTTPS. Strategic improvements in SSL/TLS deployment and enhanced security policies are recommended to improve trust and compliance.

L

Ligabue

ligabue.it

0

Ligabue S.p.a. is a well-established company specializing in global food service and logistics for the maritime and energy sectors. The company operates in 16 countries with a network of 200 partners and suppliers across 417 ports, providing ship supply, cargo services, industrial services, and maritime hospitality. Their website reflects a professional and comprehensive digital presence, leveraging WordPress CMS and modern frontend technologies. However, the absence of a valid SSL certificate and HTTPS implementation is a critical security gap that undermines user trust and data protection. Privacy policies are well addressed through a reputable third-party provider, indicating good compliance with GDPR standards. Overall, the company demonstrates strong business credibility and market positioning but must urgently address its security posture to align with best practices and regulatory requirements.

KAICIID is an intergovernmental organization dedicated to promoting intercultural and interreligious dialogue to foster peace globally. The website reflects a mature organization with a clear mission, targeting religious leaders, educators, and policymakers. It offers capacity building, dialogue platforms, and regional initiatives. Technically, the site is built on Drupal 10 with modern frontend libraries and hosted on Pantheon, but suffers from slow performance and lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly reduces the security posture. Privacy compliance is basic, with no cookie consent mechanisms despite tracking scripts. Contact information and social media presence are well established, supporting business credibility. Overall, the site is professional and content-rich but requires urgent security improvements.

Q

QuoVadis

quovadisglobal.com

0

QuoVadis, now a part of DigiCert, is a well-established international Certification Service Provider specializing in digital certificates, SSL/TLS, managed PKI, digital signature solutions, and root signing. The company holds strong accreditations such as WebTrust and ETSI and serves a broad clientele including top banks, e-commerce sites, and Fortune 500 companies primarily in Europe and Bermuda. Their business model focuses on providing high-assurance digital identity and security services with local compliance and disaster recovery capabilities. The website reflects a professional and consistent brand presence with comprehensive service offerings and multiple country offices.

Georg Fischer Ltd is a well-established Swiss enterprise specializing in manufacturing and providing flow solutions across industrial, infrastructure, and building sectors. The company operates through four main divisions offering piping systems, casting solutions, machining solutions, and building flow solutions. The website reflects a mature digital presence with comprehensive content targeting industrial clients, investors, and job seekers. Technically, the site leverages Adobe Experience Manager, integrates modern analytics and marketing tools, and provides a good user experience with mobile optimization and accessibility features. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS enforcement, which is a critical issue that significantly impacts the overall security score. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by detailed investor relations and trust indicators. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and maintain trust.