Security Directory

A

Avnet Embedded

msc-technologies.eu

0

Avnet Embedded is a division of Avnet, Inc., specializing in embedded computing, display, and software solutions for OEMs and businesses aiming to accelerate product time-to-market. The company positions itself as a world leader in embedded technology, offering a broad range of services including design, manufacturing, assembly, and software consultancy. Their business model leverages a strong partner ecosystem and in-house capabilities to deliver comprehensive embedded solutions. The website content is rich, professionally designed, and targets a global audience in the technology and manufacturing sectors. Technically, the website is built on WordPress with WooCommerce and several modern plugins such as Smart Slider 3 and Ultimate Member. The site uses Google Analytics and Google Tag Manager for tracking and marketing purposes. While the design and content quality are excellent, performance is slow, and there is a notable lack of valid SSL/TLS configuration, which impacts security and user trust. From a security perspective, the site implements several important HTTP security headers and cookie flags, but the absence of a valid SSL certificate and disabled TLS protocols represent critical vulnerabilities. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place, indicating good GDPR adherence. However, no explicit incident response or vulnerability disclosure policies were found. Overall, the site demonstrates a mature business presence with strong content and privacy practices but suffers from critical security configuration issues that should be addressed promptly to improve trust and protect users.

I

ITA Labs

ita-labs.com

0

ITA Labs is a specialized custom software development company focusing on high-load distributed client-server systems primarily using .NET technologies. They serve a diverse international clientele including government agencies and corporations across Russia, USA, Europe, and Africa. Their key services include application servers, IoT services, smart bots, management portals, SDKs, and software protection solutions. Technically, the website is built on Bitrix CMS with custom JavaScript and integrates Google Analytics for tracking. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security deficiency. The security posture is weak with minimal security headers and no modern TLS protocols enabled. Privacy compliance is basic with a cookie consent banner and privacy policy present but no GDPR-specific indicators or terms of service. Business credibility is supported by consistent WHOIS data, clear contact information, and multiple trust badges from industry platforms. Overall, the website is functional and professional but requires urgent improvements in security and privacy compliance to meet modern standards.

W

WK-Development GmbH

wk-development.com

0

WK-Development GmbH is a Vienna-based real estate development company specializing in exclusive residential projects in Vienna, its surroundings, and Eastern Europe. The company operates as a management holding for project companies involved in acquisition, development, and sale of high-end residential properties. With a portfolio exceeding 150,000 m² of new residential space developed in recent years, WK-Development targets private and institutional investors seeking profitable real estate investments. The website reflects a mature digital presence with detailed project showcases, team profiles, and partner information, supporting its market positioning as a reliable and growing player in Central European real estate development. Technically, the website is built on WordPress using Elementor and Yoast SEO, indicating a modern CMS and SEO-friendly infrastructure. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap, exposing users to potential data interception risks. The site lacks advanced security headers and email authentication mechanisms like DMARC, which could be improved to enhance trust and security. Performance data is unavailable, but the site uses WP Rocket for optimization and appears mobile responsive. Security posture is weak due to missing HTTPS and TLS protocols, no HSTS, and no OCSP stapling. Privacy compliance is partial; a comprehensive privacy policy exists, but no cookie consent mechanism is detected, which is a GDPR compliance risk. Contact information is clearly presented, including a company email and physical address, but no phone numbers are explicitly provided. Social media presence is active on Facebook, Instagram, and YouTube. Overall, WK-Development GmbH presents a professional and credible business front with strong content and branding but requires urgent security improvements to protect users and comply with privacy regulations. Strategic recommendations include immediate SSL implementation, enhanced email security, and cookie consent integration to align with best practices and regulatory requirements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

E

Euronet Worldwide, Inc.

euronetworldwide.com

0

Euronet Worldwide, Inc. operates as a global leader in payments processing and cross-border transactions, providing a broad range of financial technology solutions including electronic funds transfer, prepaid products, and money transfer services. The company serves financial institutions, fintechs, retailers, and consumers worldwide, leveraging platforms such as Ren and Dandelion to enable real-time, compliant cross-border payments. The website reflects a mature enterprise with a strong market position and comprehensive business information, including investor relations and corporate governance details. Technically, the site is built on WordPress with Elementor and hosted on WP Engine, integrating modern analytics and cookie consent tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS, exposing users to potential risks. Security headers are partially implemented, but improvements are needed in TLS protocol support, HSTS, and session management. Privacy compliance is well addressed with GDPR-aligned policies and consent mechanisms. Overall, the site demonstrates high professionalism and trustworthiness but requires urgent security enhancements to protect user data and maintain credibility.

J

Jebsen & Co. Ltd.

jebsen.com

0

Jebsen & Co. Ltd. is a well-established company founded in 1895, specializing in marketing, distribution, and investment of premium brands primarily in Greater China. The company operates across diversified sectors including Motors, Beverage, Consumer, and Capital investments, positioning itself as a bridge between Eastern and Western markets. The website reflects a mature digital presence with comprehensive business information, multilingual support, and strong branding consistency. Technically, the site is built on WordPress with modern SEO and user experience features, though performance metrics are unavailable. Security posture is currently weak due to the absence of a valid SSL certificate and lack of modern TLS protocols, which poses risks to data confidentiality and user trust. Privacy compliance is partially met with a privacy policy and incident response contact, but lacks cookie consent mechanisms. Overall, the site is professional and trustworthy but requires urgent security improvements to align with best practices.

The domain sobaby.fr is currently a parked domain with no active website content or business presence. The site displays a minimal HTML page with a script loading from sedoparking.com, indicating it is monetized via domain parking services. There is no privacy policy, cookie policy, terms of service, or contact information available, which suggests no operational business behind the domain at this time. Technically, the site lacks HTTPS support and does not have any DNS A, AAAA, MX, or NS records configured, which further confirms the absence of an active web service. From a security perspective, the absence of an SSL/TLS certificate and HTTPS support is a critical vulnerability, exposing any potential visitors to risks if the site were to collect data. No security headers or best practices are implemented, and no incident response or vulnerability disclosure information is present. The domain's WHOIS data shows it is registered but lacks DNS configuration, which is inconsistent with a legitimate active business website. Overall, the site scores very low on content quality, technical implementation, security posture, privacy compliance, and business credibility. It is essentially a placeholder domain with no meaningful content or security measures. Strategic recommendations include obtaining a valid SSL certificate, configuring DNS properly, developing actual website content with clear business information, and implementing privacy and security policies to improve trust and compliance.

DEBRA Austria is a specialized non-profit patient organization dedicated to supporting individuals affected by Epidermolysis bullosa (EB), also known as Schmetterlingskinder. The organization facilitates medical care through the EB-Haus Austria specialized clinic, funds research for therapy development, and provides direct aid to patients and families. Their market position is strong within Austria as a leading EB support entity, with a clear focus on healthcare and patient advocacy. The website reflects a professional and well-structured digital presence, targeting patients, caregivers, and donors. Technically, the site is built on TYPO3 CMS and uses modern JavaScript libraries for enhanced user experience, though performance data is limited. Security posture is weak due to the absence of HTTPS, which is a critical vulnerability. Privacy compliance is moderate, with a privacy policy present but lacking a cookie consent mechanism despite tracking technologies. Overall, the site is trustworthy but requires urgent security improvements to protect user data and enhance credibility.

The website sixsentix.com is currently inaccessible, serving only a 404 Not Found error page with minimal HTML content. There is no visible business information, metadata, or content to analyze. The domain is registered but lacks DNS records and SSL configuration, indicating either abandonment or misconfiguration. The absence of HTTPS and security headers exposes the site to significant security risks. No privacy, cookie, or terms of service policies are present, and no contact information or social media links are available. Overall, the website's digital maturity is very low, with poor technical infrastructure and no evidence of active business operations or security posture.

N

net4com GmbH

net4com.at

0

net4com GmbH is a specialized company focusing on trading IT and telecommunications hardware, asset recovery, recycling, consulting, and engineering services primarily targeting the Central and Eastern European markets. With over 25 years of industry experience and local presence in Austria, Bulgaria, and the UK, the company leverages a trusted network of partners and OEM vendors to provide integrated and personalized solutions. Their business model includes managed service contracts for asset management and compliance with environmental regulations, supporting clients' corporate responsibility programs. Technically, the website is built on WordPress using common plugins and themes, served by an Apache server on CentOS with PHP 7.4.29. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a significant security and trust concern. The site shows basic mobile optimization and accessibility but has slow performance and limited SEO optimization. From a security perspective, the absence of HTTPS, lack of security headers, and missing advanced security policies reduce the overall security posture. No incident response or vulnerability disclosure policies are present. Privacy and cookie policies exist but lack active consent mechanisms. Contact information is comprehensive and professionally presented, enhancing business credibility. Overall, while the business appears legitimate and professionally presented, the website's security shortcomings, especially the lack of HTTPS, pose risks to user trust and data protection. Strategic improvements in security infrastructure and privacy compliance are recommended to enhance the company's digital maturity and trustworthiness.

Ploier + Hörmann is a medium-sized Austrian construction company specializing in energy and telecommunications infrastructure, with over 50 years of experience. The company operates as part of the larger Unternehmensgruppe LEYRER + GRAF, which strengthens its market position and resource base. Their website is professionally designed using TYPO3 CMS, providing clear navigation and relevant content targeted at clients in the construction and infrastructure sectors. However, the absence of a valid SSL certificate and HTTPS severely impacts their security posture and user trust. While cookie consent and privacy policies are implemented, there is a lack of explicit security policies or incident response information. The company maintains active social media channels and links to sister companies, indicating a well-connected business ecosystem.

P

Paradigma Digital

paradigmadigital.com

0

Paradigma Digital is a Spanish technology consulting firm specializing in digital transformation through strategy, technology, and talent experience. Established in 2007, it positions itself as a boutique with a strong focus on cloud native, strategic design, data intelligence, and digital DNA services. The company maintains partnerships with major technology providers such as Google Cloud, Red Hat, AWS, and Microsoft, enhancing its market credibility. Technically, the website uses Apache hosting on Google Cloud infrastructure, modern JavaScript, and SVG graphics, but lacks a valid SSL certificate, which is a critical security gap. Privacy and cookie policies are well implemented with consent mechanisms, reflecting GDPR compliance. The site features extensive social media integration and marketing tools like Google Tag Manager and HubSpot forms, indicating moderate user tracking. Overall, the website is professionally designed with excellent content quality and user experience but requires urgent security improvements to enable HTTPS and modern TLS protocols.

A

Atlantic Grupa d.d.

atlanticgrupa.com

0

Atlantic Grupa d.d. is a prominent regional leader in the fast-moving consumer goods sector, specializing in the production and distribution of popular food and beverage brands across Southeast Europe. The company maintains a strong market position with a comprehensive distribution network and a focus on sustainability and corporate responsibility. Their website reflects a professional digital presence with detailed investor relations and sustainability content, targeting regional consumers, investors, and partners. Technically, the site leverages modern JavaScript frameworks such as Nuxt.js and Vue.js and is hosted behind Cloudflare, ensuring good performance and mobile optimization. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS configuration, exposing users to potential risks. Privacy and cookie policies are well implemented, indicating GDPR compliance. Overall, the site demonstrates good business credibility but requires urgent security improvements to protect user data and maintain trust.

U

untermStrich Software GmbH

untermstrich.com

0

untermStrich Software GmbH is a technology company specializing in SaaS-based office management and controlling software tailored for architects and engineers. The company has a strong market presence with approximately 87,000 users worldwide and operates in multiple countries including Austria, Germany, and the USA. Their flagship product, untermStrich X4, offers comprehensive tools for project management, electronic invoicing, CRM, and document management, targeting architectural and engineering firms. The website demonstrates a high level of digital maturity with professional design, structured data, and SEO optimization. However, the current lack of a valid SSL/TLS certificate and disabled HTTPS protocols represent a critical security vulnerability that must be addressed promptly. Privacy and cookie policies are well implemented and GDPR compliant, enhancing user trust. Overall, untermStrich presents a credible and professional business with a solid technical infrastructure but requires immediate improvement in its security posture.

Indorama Ventures Schoeller Wool Austria GmbH is a well-established global supplier specializing in worsted yarns with a history dating back to 1849. The company focuses on providing a wide range of yarn products including flat knit, performance, technical, hosiery, and weaving yarns, emphasizing sustainability and certified processing. Their target audience primarily includes textile manufacturers and technical yarn users. The website reflects a professional B2B manufacturing business model with consistent branding and trust indicators such as sustainability certifications and social media presence. Technically, the website is built on the Contao CMS platform using PHP 8.2 and nginx, with frontend technologies including jQuery and Bootstrap 4. Analytics are handled via Matomo, indicating a moderate level of digital maturity. However, the site lacks HTTPS support due to an invalid or missing SSL certificate, which significantly impacts security posture. Performance data is unavailable, but mobile optimization and navigation are assessed as good. Security-wise, the site implements several HTTP security headers but fails to provide a valid SSL certificate or enable modern TLS protocols, resulting in a low security score. No explicit security or incident response policies are found, and no vulnerability disclosure or security.txt files are present. Privacy compliance is supported by a cookie consent mechanism and a privacy policy page, aligning with GDPR requirements. Overall, while the business and website content are credible and professional, the lack of HTTPS is a critical security gap that must be addressed urgently. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, and enhancing security configurations to improve trust and compliance.

K

Kpler

jbcenergy.com

0

Kpler is a medium-sized, Belgium-based data and analytics company specializing in commodity and energy markets. It provides proprietary data, market analysis, forecasts, and maritime tracking services to a professional B2B audience including traders, analysts, and logistics managers. The company has strengthened its market position through acquisitions such as JBC Energy and ClipperData, consolidating its leadership in commodity data analytics. Technically, the website is built on Webflow CMS, hosted via Cloudflare, and employs modern JavaScript libraries and marketing tools. However, the site suffers from a critical security issue due to an invalid SSL certificate and lack of TLS protocol support, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the website is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

P

Primagaz

primagaz.fr

0

Primagaz is a well-established French energy supplier specializing in propane, butane, GPL, and biopropane gas products and services. Founded in 1938, the company targets both residential and professional customers, including those in remote areas not connected to natural gas networks. The website reflects a mature digital presence with comprehensive content, clear navigation, and strong branding consistency. However, the technical infrastructure shows weaknesses, notably the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Marketing and analytics tools such as Google Tag Manager, Visual Website Optimizer, and Cludo search are integrated, indicating a focus on user experience and conversion optimization. Privacy and cookie policies are present and GDPR compliant, enhancing trust. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and comply with modern web standards.

Presstv.com appears to be a media-related website, likely focused on news content. However, the current website content is extremely minimal, consisting only of a single image reference with no textual content, metadata, or interactive elements. The technical infrastructure is based on Amazon S3 and CloudFront CDN, but the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. No privacy or cookie policies are present, indicating poor compliance with data protection regulations. Overall, the website's security posture is weak, with no advanced security headers or mechanisms implemented. The domain registration is consistent and legitimate, but the lack of content and security features significantly reduces trust and usability.

S

Successfactory Consulting Group

successfactory.cc

0

Successfactory Consulting Group is a specialized consulting firm based in Austria focusing on organizational development, process optimization, product and system development, sustainability, agile transformation, and digitalization including artificial intelligence. The company offers a combination of consulting, training, coaching, and digital solutions targeting organizations seeking to improve productivity and adapt to modern trends. The website is built on WordPress with Elementor and Astra theme, showing a moderate level of digital maturity but lacking a valid SSL certificate, which is a critical security gap. The presence of GDPR-compliant cookie consent and privacy policy indicates attention to privacy compliance. Social media presence on major platforms supports business credibility. However, the absence of HTTPS and modern TLS protocols significantly impacts the security posture and overall trustworthiness of the site.

The website rosch.com.au presents minimal accessible content, primarily consisting of embedded tracking and advertising scripts from external domains. There is no visible business information, contact details, or user-facing content, which severely limits the ability to assess the company's operations or market position. The domain is registered but lacks DNS A and MX records, and no valid SSL certificate is configured, resulting in no HTTPS support. This technical immaturity and lack of content suggest the website is either inactive, misconfigured, or potentially used for tracking or advertising purposes rather than legitimate business engagement. Security headers are partially implemented but insufficient without HTTPS, and no privacy or cookie policies are present, indicating poor compliance with data protection regulations. Overall, the site exhibits a low trustworthiness profile with significant security and compliance gaps.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

D

DCCS GmbH

dccs.at

0

DCCS GmbH is a large Austrian IT company specializing in business IT solutions, digital transformation, and AI applications primarily serving industrial and energy sectors. The company operates multiple offices across Austria, Germany, and Bosnia and Herzegovina, employing over 330 professionals. Their website reflects a mature digital presence with comprehensive service offerings and strong branding. Technically, the site uses modern frameworks such as Liferay and React, with integrated analytics and captcha services. However, a critical security gap exists due to the lack of a valid SSL certificate and proper HTTPS configuration, which undermines user trust and data security. Privacy and cookie compliance are well implemented, with clear policies and consent mechanisms. Overall, the website is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to meet security best practices.

M

Montanwerke Brixlegg AG

montanwerke-brixlegg.com

0

Montanwerke Brixlegg AG is a mature manufacturing company specializing in copper recycling and upcycling solutions, with a strong emphasis on sustainability. The company operates primarily in Austria and targets industrial customers requiring high-quality copper products such as cathodes and round bolts. The website reflects a professional and consistent brand image with good content quality and clear navigation. Technically, the site is built on WordPress with common plugins like Yoast SEO and Borlabs Cookie, but suffers from a lack of a valid SSL certificate, resulting in no HTTPS support and weak security posture. Security headers are partially implemented, but critical TLS protocols and cipher suites are missing, exposing the site to potential risks. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is clearly presented, enhancing business credibility. Overall, the site scores moderately due to security shortcomings and technical performance issues.

C

Curium Austria GmbH

iason.eu

0

Curium Austria GmbH is a specialized manufacturer and distributor of radiopharmaceuticals for nuclear medicine, operating two production sites in Austria and integrated into the global Curium Pharma network since 2021. The company targets healthcare providers and hospitals across Europe, offering PET radiopharmaceuticals with marketing authorizations in multiple countries. The website is professionally designed using WordPress and Elementor, providing comprehensive content about the company, products, and career opportunities. Technically, the site uses modern web technologies and is hosted behind Cloudflare, but critically lacks a valid SSL certificate, exposing it to security risks. Privacy compliance is well managed with a detailed cookie consent mechanism and a comprehensive privacy policy. Contact information is available primarily via a contact form and physical addresses, but no explicit company emails or phone numbers are listed. Overall, the site demonstrates strong business credibility and content quality but requires urgent security improvements.

J

Joseph Haydn Privathochschule GmbH

haydnkons.at

0

Joseph Haydn Privathochschule GmbH is a private tertiary education institution specializing in music education located in Eisenstadt, Austria. The institution offers a range of study programs including Bachelor, Master, part-time studies, and specialized courses in Jazz and Popular music, targeting young musicians and international students. The website is built on TYPO3 CMS and hosted on Apache servers, with a moderate digital maturity level. It features professional design, clear navigation, and good mobile optimization. However, the absence of HTTPS and cookie consent mechanisms indicates critical security and privacy compliance gaps. The site uses Google Tag Manager for analytics and has active social media channels. Overall, the business presents itself professionally but needs to address security and privacy shortcomings to improve trust and compliance.

T

TAL Aviation Group

talaviation.com

0

TAL Aviation Group is a well-established airline representation and travel services company with a global presence and a history dating back to 1987. The company offers a broad range of services including passenger and cargo GSA, airline distribution, destination marketing, tourism services, and digital marketing solutions. Their website reflects a professional and consistent brand image targeting airlines, tourism boards, and travel technology companies worldwide. Technically, the website uses a custom CMS with legacy jQuery libraries and integrates common marketing and analytics tools such as Google Analytics and Outbrain. However, the absence of a valid SSL certificate and HTTPS support is a critical security gap that undermines user trust and data protection. Security headers are implemented but cannot compensate for the lack of encryption. Privacy compliance is addressed with a cookie consent mechanism and a privacy policy page, indicating awareness of GDPR requirements. Overall, the website is functional and credible but requires urgent security improvements to meet modern standards.

U

USU GmbH

usu.de

0

USU GmbH is a well-established enterprise technology company headquartered in Germany, specializing in IT service management, software asset management, knowledge management, cloud management, and digital consulting solutions. The company targets large enterprises and organizations seeking to optimize their IT landscapes and customer service experiences through AI-powered tools and services. USU maintains a strong market position supported by a comprehensive product portfolio, global customer base, and industry recognitions. Technically, the website is built on Drupal 10 with a modern tech stack including jQuery and various marketing and analytics integrations. The site is well-optimized for mobile and SEO, providing excellent user experience and navigation. However, a critical security gap exists due to the absence of a valid SSL certificate and lack of TLS support, which significantly impacts the security posture. Privacy policies and cookie consent mechanisms are present and appear GDPR compliant, supporting the company's commitment to data protection. Overall, USU demonstrates high business credibility and professionalism but must urgently address its SSL/TLS configuration to ensure secure communications and maintain trust.

A

ATMOSA Petrochemie GmbH

atmosa.at

0

ATMOSA Petrochemie GmbH is a medium-sized Austrian company specializing in the production and supply of Phthalic Anhydride, a key petrochemical product. Established in 1995, it has positioned itself as a major European producer with a focus on reliability and long-term supply to chemical producers globally. The website reflects a professional business presence with clear company information, product details, and contact options targeting industrial clients and partners. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and analytics tools, hosted on infrastructure linked to hostprofis.com. However, the absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to risks and undermining trust. Privacy and cookie policies are well implemented with GDPR compliance and user consent mechanisms. Overall, the site is functional and professional but requires urgent security improvements to meet modern standards.

B

Brick & Patel LLP

brickpatel.com

0

Brick & Patel LLP is a small legal services firm specializing in trust and estate planning and administration, serving clients primarily in several US states including New York and Florida. The website provides basic information about the firm's services and geographic focus but lacks detailed contact information and modern web features. Technically, the site is built on an Apache server using older JavaScript libraries and Cloudfront CDN for some assets. However, the site lacks a valid SSL certificate, resulting in no HTTPS support despite security headers indicating HSTS, which undermines user trust and security. Privacy compliance is minimal with no cookie consent mechanism and only a basic privacy policy present. Business credibility is supported by a mature domain and consistent WHOIS data, but the overall digital maturity is low. Security posture is weak due to missing SSL and outdated libraries, posing risks to visitors and the firm's reputation. Strategic improvements should focus on securing the site with valid SSL, updating technology stack, and enhancing privacy and security policies to meet modern standards.

Vision Estate India is a medium-sized real estate company based in India, specializing in residential and commercial properties primarily in Gurgaon. Established in 1996 and ISO 9001:2008 certified, the company offers services including buying, selling, and renting properties. The website is built on WordPress with WooCommerce and Elementor, showcasing property listings, testimonials, and partner logos. However, the site lacks HTTPS, which significantly impacts its security posture. No privacy or cookie policies are present, indicating compliance gaps. The technical infrastructure is moderate but could benefit from performance and security improvements.

G

GATX Corporation

gatx.com

0

GATX Corporation is a well-established global leader in transportation asset leasing, with a diverse portfolio including railcars, locomotives, tank containers, and aircraft spare engines. The company holds a strong market position across North America, Europe, and India, supported by a comprehensive service offering and a commitment to sustainability and customer support. The website reflects a mature digital presence with professional design, clear navigation, and extensive business information tailored to customers, investors, and job seekers. Technically, the site leverages modern frameworks such as Vue.js and integrates advanced search and consent management tools, although performance is moderate and SSL/TLS configuration is currently lacking. Security headers are properly set, but the absence of a valid SSL certificate significantly impacts the security posture. Overall, the site is trustworthy and professional but requires urgent remediation of HTTPS to ensure secure communications and maintain user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

P

Pittel+Brausewetter Holding GmbH

pittel.at

0

Pittel+Brausewetter Holding GmbH is a well-established Austrian family-owned construction company with over 150 years of experience. They specialize in a broad range of construction services including road, civil, industrial, structural, bridge, and sports facility construction. The company maintains a strong market position with multiple reference projects and a consistent brand presence. Technically, the website is built on WordPress using common plugins and themes, with moderate performance and good mobile optimization. However, a critical security weakness is the lack of a valid SSL certificate, resulting in no HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Contact information and social media presence are clearly provided, enhancing business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 13 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

A

Allea Group

alleagroup.com

0

Allea Group is a medium-sized real estate investment and development holding company based in Cyprus, specializing in exclusive European residential and commercial property projects. The website presents a professional and well-structured digital presence targeting investors and clients interested in high-end real estate opportunities. The technical infrastructure is built on WordPress with popular plugins and is hosted behind Cloudflare CDN, but critically lacks a valid SSL certificate, resulting in no HTTPS availability which severely impacts security posture. Privacy and cookie policies are comprehensive and GDPR compliant, indicating good privacy awareness. However, the absence of terms of service, security policy, and vulnerability disclosure reduces transparency. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 16 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

C

CANBERRA PACKARD Central Europe GmbH

cpce.net

0

CANBERRA PACKARD Central Europe GmbH is a well-established company specializing in the sales, installation, and servicing of nuclear and environmental radiation detection and measurement equipment, as well as medical radiation diagnostic and therapy equipment. Founded in 1987 in Austria, the company has grown to become the largest supplier in Central and Eastern Europe, serving a diverse clientele including government organizations, nuclear power plants, research centers, and international bodies. The website reflects a professional corporate presence with relevant content and clear contact information, targeting industry professionals and institutional customers. Technically, the website is built on WordPress 6.8.1 running PHP 8.2.28 and hosted on DigitalOcean infrastructure. While the site demonstrates good mobile optimization and accessibility, performance metrics are lacking, and SEO optimization is basic. The absence of a valid SSL certificate and HTTPS support is a critical security shortfall, exposing users to potential risks and undermining trust. Security headers are minimal, and no advanced security frameworks or incident response policies are evident. From a security perspective, the site’s posture is weak due to the lack of HTTPS, no cookie or privacy policies, and no vulnerability disclosure mechanisms. The SPF record is valid, and DNS configurations are consistent with the business location, but the SSL/TLS configuration is non-existent, which is a major vulnerability. No WAF or blocking mechanisms are detected, indicating open accessibility but also potential exposure. Overall, the site is functional and professional in content but requires urgent improvements in security and privacy compliance to meet modern standards. Strategic recommendations include implementing HTTPS with a valid certificate, publishing privacy and cookie policies, and enhancing security headers and incident response readiness to improve trust and compliance.

T

Tenne Export-Import Handelsgesellschaft m.b.H.

tenne.at

0

Tenne Export-Import Handelsgesellschaft m.b.H. is a well-established Austrian retail company specializing in bathroom products and complete bathroom systems. With over 40 years of industry experience, the company operates multiple showrooms across Austria and offers an online shop, targeting both end consumers and business clients. Their product range includes bathroom furniture, fittings, tiles, showers, and accessories, supported by services such as online bathroom planning and mobile consultation. The company holds reputable certifications and awards, reinforcing its strong market position as a leading bathroom retailer in Austria. Technically, the website is built on WordPress with a variety of plugins including Yoast SEO, Borlabs Cookie for consent management, and Contact Form 7 for user interactions. The site uses Apache hosting likely provided by Telekom Austria. While the site is rich in content, well-structured, and optimized for SEO and mobile devices, it suffers from a critical security shortfall: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Security-wise, the site lacks modern TLS protocols, HSTS headers, and email security measures such as DMARC and DNSSEC. However, it employs reCAPTCHA on forms and avoids known SSL vulnerabilities. Privacy compliance is strong with comprehensive policies and cookie consent mechanisms in place. Contact information is abundant and clearly presented, enhancing business credibility. Overall, the website is professional, content-rich, and trustworthy from a business perspective but requires urgent improvements in SSL/TLS configuration and security headers to protect user data and improve trustworthiness. Addressing these issues will elevate the site's security score and user confidence.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

W

wirtschaft-burgenland.at

wirtschaft-burgenland.at

0

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 12 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 14 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: securityHeaders, nis2, emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: gdpr. 26 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 30 security findings identified across all modules.

Royal Avebe is a well-established cooperative specializing in the production and supply of potato-based ingredients such as potato starch and protein. With a history dating back to 1919, the company serves diverse markets including food, industrial applications, and animal nutrition. The website reflects a mature business with comprehensive content, clear navigation, and strong branding consistency. Technically, the site is built on WordPress with modern SEO and tracking tools but suffers from slow performance and lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS and security headers, exposing the site to potential risks. Privacy compliance is well addressed with detailed policies and a cookie consent mechanism. Contact information and social media presence are clearly provided, enhancing business credibility.