Security Directory

F

Flex

flex.com

0

Flex is a global enterprise specializing in advanced manufacturing and end-to-end supply chain solutions. The company offers a broad range of services including design and engineering, supply chain management, advanced manufacturing, post production, and post sale services. With a strong global footprint and multiple subsidiaries, Flex positions itself as a leader in manufacturing innovation and operational efficiency. The website reflects a professional and comprehensive digital presence, targeting businesses requiring scalable manufacturing and supply chain solutions. Technically, the website is built on WordPress and hosted on Pantheon, utilizing modern web technologies such as jQuery, Google Tag Manager, and New Relic for monitoring. The site is well-optimized for SEO and mobile responsiveness, providing a good user experience. However, performance metrics are moderate, and there is room for improvement in loading speed. From a security perspective, the site has several HTTP security headers configured, including HSTS and CSP in report-only mode. Unfortunately, the SSL certificate is invalid or missing, and no TLS protocols are enabled, which significantly weakens the security posture. No direct contact emails or phone numbers are publicly listed, but contact forms are available. Privacy and cookie policies are present and indicate GDPR compliance. Overall, while the business credibility and content quality are high, the lack of proper SSL/TLS configuration is a critical security concern that should be addressed promptly to protect user data and maintain trust.

E

Eurocom Translation Services GmbH

eurocom.at

0

Eurocom Translation Services GmbH is a well-established B2B translation and language service provider based in Austria, with over 30 years of experience and a strong market presence in the DACH region. The company offers a comprehensive suite of services including technical and marketing translations, terminology management, quality management, and language managed services such as Global SEO and machine translation. Eurocom is part of the Kaleidoscope Group, which enhances its technological capabilities and market reach. The website reflects a professional and content-rich digital presence, targeting export-oriented businesses seeking multilingual content solutions. Technically, the site is built on WordPress with modern plugins and tools, but suffers from a critical security shortfall due to the absence of a valid SSL certificate, resulting in no HTTPS support. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. The security posture is basic, lacking important security headers and DNS security features. Overall, Eurocom demonstrates strong business credibility and digital maturity but must urgently address its SSL/TLS configuration to improve security and trustworthiness.

Tommy Hilfiger is a globally recognized fashion brand offering a wide range of apparel and accessories for men, women, and children through its official online shop. The website targets fashion-conscious consumers and provides a comprehensive e-commerce platform with seasonal collections, sales, and a membership program. The technical infrastructure leverages modern web technologies including Next.js, React, and Contentstack CMS, supported by a robust CDN via Akamai and integrated with multiple third-party services for analytics, marketing, and payment processing. Despite strong security header implementations, the absence of a valid SSL certificate and lack of HTTPS significantly undermines the security posture of the site. Privacy and cookie policies are well documented and indicate GDPR compliance. Overall, the website demonstrates a high level of professionalism and business credibility but requires urgent attention to its SSL configuration to ensure secure user interactions.

N

Nameshift.com

ibk.fr

0

The website ibk.fr is a domain sales landing page managed by Nameshift.com, a company specializing in domain name transfers and escrow services. The business model focuses on providing a safe, fast, and fee-free domain transfer experience for buyers, with the seller paying commissions. The site targets individuals and businesses looking to purchase domain names securely. Technically, the site uses modern frameworks such as SvelteKit and is hosted on a CDN associated with Nameshift.com. However, the website suffers from critical security shortcomings, including the absence of a valid SSL certificate and HTTPS support, which severely impacts its security posture. Additionally, privacy and cookie policies are missing, and DNS security configurations are incomplete or malformed. These factors reduce trust and compliance with data protection regulations. Overall, the site presents a basic but functional domain sales platform with room for significant security and compliance improvements.

M

Montanuniversität Leoben

mu-leoben.at

0

Montanuniversität Leoben is a well-established technical university in Austria specializing in sustainable technologies and circular engineering. The website reflects a strong academic and research focus with comprehensive educational offerings and active international partnerships. Technically, the site uses TYPO3 CMS with modern frontend libraries but lacks a valid SSL certificate, which is a critical security concern. The security posture is weak due to missing HTTPS and incomplete security headers, though privacy compliance is well addressed with cookie consent and GDPR-aligned policies. Overall, the site is professional and trustworthy but requires urgent improvements in security infrastructure to protect user data and enhance trust.

Komatsu Forest is a mature and established manufacturer specializing in forestry machinery and related services, operating primarily out of Sweden. The company offers a broad range of forest machines including harvesters, forwarders, harvester heads, and forestry excavators, complemented by digital solutions such as Smart Forestry and a comprehensive spare parts and training service portfolio. Their market position is strong as a leading global player in forestry equipment, supported by a consistent brand presence and clear communication channels. Technically, the website is built on a Sitecore CMS platform with a technology stack including jQuery, Bootstrap, and Google Fonts. While the site is well-structured, mobile-optimized, and SEO-friendly, it lacks a valid SSL certificate, which significantly impacts its security posture. Performance metrics are incomplete, but the site shows good design and user experience qualities. From a security perspective, the absence of HTTPS and related security headers is a critical vulnerability that exposes users to risks such as data interception. The site does implement privacy and cookie policies with consent mechanisms, indicating awareness of GDPR compliance. However, there is no visible incident response or vulnerability disclosure policy, and no security certifications are presented. Overall, the website is professional and credible but requires urgent security improvements, particularly the implementation of a valid SSL certificate and enhanced security headers, to protect users and improve trustworthiness.

V

Verticalfarminstitute

verticalfarminstitute.org

0

The Vertical Farm Institute is a specialized research and consulting organization focused on advancing urban agriculture and vertical farming. Established in 2013 and based in Vienna, Austria, it collaborates on international projects such as Horizon 2020's euPOLIS. The website presents a professional digital presence with rich content including project descriptions, journals, and service offerings targeted at real estate developers, architects, and sustainability-focused stakeholders. Technically, the site is built on WordPress with modern plugins and SEO tools, but lacks a valid SSL certificate, which is a significant security concern. Privacy compliance is partial, with a privacy policy present but no cookie consent mechanism detected. Overall, the site demonstrates moderate maturity and credibility but requires urgent improvements in security and privacy practices.

The website es-investments.com currently serves as a parked domain landing page with no active business content or services. It primarily displays advertising and affiliate links indicating the domain is for sale. The technical infrastructure is minimal, hosted on Hetzner Online with a Caddy server, and uses parking scripts from ParkingCrew and Afternic. There is no valid SSL certificate, resulting in no HTTPS support, which is a critical security deficiency. Privacy compliance is minimal with only a basic privacy policy accessible via a popup link, and no cookie consent mechanisms are present. The lack of business information, contact details, and security best practices significantly lowers the site's trustworthiness and credibility.

The website polymet-solutions.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to be enabled. This prevents access to any substantive content or business information. The domain is registered and uses Cloudflare for DNS and security services but lacks a valid SSL certificate, resulting in no HTTPS support. The absence of privacy policies, contact information, or business details on the landing page limits the ability to assess the company's market position or services. Technically, the site employs Cloudflare's security headers but fails to implement modern TLS protocols or HSTS, reducing its security posture. Overall, the site scores low on content quality, technical implementation, security, privacy compliance, and business credibility due to the blocked content and missing critical elements.

A

AICHELIN Holding GmbH

aichelin.com

0

AICHELIN Holding GmbH is a leading industrial manufacturing company specializing in heat treatment solutions for metallic parts and components. The company offers a broad portfolio including industrial furnace systems, industrial burner systems, vacuum furnaces, and battery materials, supported by comprehensive global service offerings. Their website reflects a professional B2B focus targeting industrial clients and equipment manufacturers. Technically, the site uses modern JavaScript libraries, Bootstrap framework, and integrates consent management and Google Tag Manager for analytics and privacy compliance. However, the SSL/TLS configuration is critically flawed with an invalid certificate and no enabled TLS protocols, posing a significant security risk. Security headers are well implemented, but the lack of valid HTTPS severely impacts the security posture. Privacy policies and cookie consent mechanisms are present and GDPR compliant. WHOIS data confirms the legitimacy and consistency of the domain registration with the business identity. Overall, the website is content-rich and professionally presented but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions and trust.

The website onecareco.com is currently a parked domain with minimal content primarily consisting of advertising scripts and placeholders. There is no active business information, contact details, or meaningful content describing any products or services. The domain is mature, registered since 2007, but the website does not reflect an active or professional business presence. Technically, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. The hosting provider is Hetzner Online, and the site uses nginx and Caddy servers with JavaScript-based ad delivery. Security posture is weak with no modern TLS protocols enabled and no security headers configured. Privacy compliance is minimal with only a basic privacy policy page present and no cookie consent mechanism. Overall, the site scores low on content quality, technical implementation, security, privacy compliance, and business credibility.

A

Amgen Inc.

amgen.com

0

Amgen Inc. is a leading global biotechnology company focused on developing innovative biologic medicines to treat serious illnesses. The website reflects a mature enterprise with comprehensive content covering its science, products, corporate responsibility, and investor relations. The target audience includes healthcare professionals, patients, investors, and partners. The business model centers on research, development, manufacturing, and delivery of biologic therapeutics, positioning Amgen as a pioneer in biotechnology with a strong market presence. Technically, the website employs modern JavaScript libraries such as jQuery and Slick Carousel, uses lazy loading for images, and integrates Google Tag Manager and Cookiebot for analytics and privacy compliance. Hosting is via Amazon CloudFront CDN, supporting global content delivery. The site is mobile optimized with good SEO and accessibility basics, though some accessibility features could be enhanced. From a security perspective, the site implements several security headers including Content Security Policy and X-Frame-Options. However, a critical issue is the absence of a valid SSL certificate and HTTPS support, which severely impacts the security posture. No TLS protocols are enabled, and HSTS is not properly configured. These gaps expose users to potential risks and undermine trust. Overall, the website is professionally designed and content-rich, but the lack of HTTPS and valid SSL certificate is a major security concern. Strategic improvements in SSL/TLS deployment and enhanced security configurations are essential to protect user data and maintain trust. Privacy compliance is well addressed with Cookiebot and clear privacy and cookie policies. Business credibility is high, supported by consistent branding and comprehensive corporate information.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

bfi Steiermark

bfi-stmk.at

0

bfi Steiermark is a large, well-established adult education institution based in Austria, offering a wide range of courses, seminars, and certifications across multiple professional fields. The website targets adult learners and professionals in the Steiermark region, providing a comprehensive educational service portfolio. Technically, the site is built on the Contao CMS platform and uses common web technologies such as jQuery and Less CSS. However, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security vulnerability. Security headers are implemented, but the absence of HTTPS severely impacts the overall security posture. The site includes GDPR-compliant privacy and cookie policies with a consent mechanism, and it maintains active social media channels for engagement. Overall, while the business and content quality are good, the technical and security shortcomings require urgent attention to protect user data and improve trust.

N

Namirial GmbH

xyzmo.com

0

Namirial GmbH operates in the digital transaction management and e-signature software sector, providing omni-channel solutions that enable businesses to conduct secure digital transactions anytime and anywhere. The company is recognized as a leader in its market segment, offering qualified trust services compliant with eIDAS regulations, and supports both SaaS and on-premise deployments. Their target audience primarily consists of businesses seeking digital transformation in document signing and workflow management. Technically, the website uses modern web technologies such as jQuery and integrates third-party services for fonts, translation, and marketing analytics. However, the absence of a valid SSL certificate and HTTPS severely undermines the security posture, despite the presence of several security headers and policies. The domain is mature and consistent with the company's history, but the imminent expiry poses a risk if not renewed promptly. Overall, the website is professional and content-rich but requires urgent security improvements to protect user data and maintain trust.

W

Wienerberger AG

wienerberger.com

0

Wienerberger AG is a leading global manufacturer and supplier of building materials, specializing in bricks, clay roof tiles, pipe systems, and surface pavings. The company holds a strong market position as the world's largest brick producer and a market leader in Europe for clay roof tiles and infrastructure solutions. The website reflects a mature and professional digital presence with comprehensive content targeting investors, customers, and job seekers. Technically, the site is built on Adobe Experience Manager and uses modern web technologies, but critically lacks HTTPS/SSL encryption, exposing users to security risks. Security headers are partially implemented, but the absence of SSL/TLS significantly lowers the security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates high business credibility and content quality but requires urgent security improvements to protect user data and maintain trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

H

Hotwell US

hotwellus.com

0

Hotwell US is a specialized company focused on developing advanced wireline well logging tools, systems, and software primarily serving the energy sector. The business operates a WordPress-based website that provides basic information about its products and services but lacks comprehensive content and contact details. The company appears to be a small-sized entity with a mature domain age of 18 years, indicating an established presence in its niche market. Technically, the website relies on older versions of WordPress and jQuery, with Cloudflare providing DNS and hosting services. SEO is moderately optimized using Yoast SEO, but mobile optimization and accessibility are basic. Security posture is weak due to the absence of HTTPS/SSL, lack of security headers, and missing privacy and cookie policies. Google Analytics is used for user tracking without any consent mechanism, raising privacy compliance concerns. Overall, the website presents a low trustworthiness level and requires significant improvements in security and compliance to meet modern standards.

F

FH Oberösterreich

fh-ooe.at

0

FH Oberösterreich (FH OÖ) is a leading university of applied sciences in Austria, offering a wide range of bachelor and master degree programs across multiple campuses. The institution emphasizes praxis-oriented education, personal consultation, and maintains strong international partnerships. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the site uses modern frameworks such as Vue.js and Craft CMS, and integrates various analytics and marketing tools with user consent mechanisms. However, the security posture is weakened by the absence of a valid SSL certificate and lack of security headers, exposing users to potential risks. Privacy compliance is well addressed with detailed policies and cookie consent. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS configuration to ensure secure communications.

W

WiLLTRON Technologies GmbH

willtron.at

0

WiLLTRON Technologies GmbH is a specialized Austrian company founded in 2005, focusing on testing, measuring, monitoring, and analyzing wired and wireless IP networks and communication systems. Their offerings include a range of hardware and software solutions, seminars, and webinars targeting network professionals and communication system installers. The company maintains strategic partnerships with international manufacturers, positioning itself as a niche provider in the telecommunications technology sector. The website reflects a professional and consistent brand image with clear contact information and service descriptions. Technically, the site is built on TYPO3 CMS with common frontend frameworks and libraries, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS exposes users to potential data interception risks and reduces trustworthiness. Privacy and cookie policies are present with consent mechanisms, but no terms of service or explicit security policies are found. Social media presence is moderate, including Facebook, LinkedIn, and Google Plus (deprecated). Overall, the website is functional and informative but requires urgent security improvements to meet modern standards.

Tungsten Automation Corporation, formerly known as Kofax, is a leading enterprise technology provider specializing in AI-powered workflow automation solutions. The company offers a broad portfolio of products including document and workflow automation, accounts payable and receivable automation, print and workplace automation, and PDF and eSignature solutions. Positioned as a market leader, Tungsten Automation is recognized by industry analysts such as Everest Group and IDC for its intelligent document processing capabilities. The company targets global enterprises seeking to streamline complex, data-intensive business processes and improve operational efficiency through AI and automation technologies. Technically, the website is built on a modern stack including Sitecore CMS, jQuery, and integrates multiple marketing and analytics tools such as Google Analytics, Visual Website Optimizer, and Eloqua. Hosting appears to be on Microsoft Azure. While the site demonstrates excellent content quality, branding consistency, and user experience, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and lack of HTTPS support, which severely impacts its security posture. Privacy policies and cookie consent mechanisms are present and GDPR compliant, supporting good privacy compliance. Overall, the site reflects a mature enterprise digital presence but urgently requires remediation of its SSL/TLS configuration to meet basic security standards.

G

Getzner Textil AG

getzner.at

0

Getzner Textil AG is a well-established Austrian textile manufacturer with a history dating back to 1818. The company specializes in high-quality fashion fabrics, corporate fashion textiles, personal protective equipment, sports equipment textiles, and industrial textiles, emphasizing innovation and sustainability. Their market position is strong within Europe, serving a diverse clientele including fashion designers, garment makers, and industrial users. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and Matomo Analytics, hosted behind Fastly CDN and Varnish cache. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts security posture. Privacy and cookie policies are well implemented with consent mechanisms, and the company maintains active social media channels. Overall, the domain registration and DNS data align with the company's claims, indicating legitimacy and trustworthiness.

U

UBIMET

ubimet.com

0

UBIMET is a mature meteorological services company founded in 2008, specializing in providing high-precision, tailored weather data and integrated systems to businesses across sectors such as energy, transportation, insurance, retail, and media. The company leverages proprietary AI-driven weather models combining multiple data sources to deliver scalable and precise weather information. Their market position is strong, supported by a consistent brand, client testimonials, and certifications like ISO 27001. Technically, the website is built on WordPress with modern plugins and lazy loading for images, but suffers from critical security shortcomings including the absence of a valid SSL certificate and disabled TLS protocols, which significantly impact the security posture. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site presents professional content and good user experience but requires urgent security improvements to protect user data and enhance trust.

The Australian Government Department of Foreign Affairs and Trade (DFAT) operates as the primary government agency responsible for managing Australia's international relations, trade, and diplomatic efforts. The website serves as an authoritative source of information for Australian citizens, international partners, businesses, and travelers, providing comprehensive content on foreign affairs, trade agreements, development programs, consular services, and travel advice. The site is well-branded, professionally designed, and consistent with government standards, reflecting its enterprise-level stature within the government sector. Technically, the website is built on Drupal 10 and hosted on GovCMS, a platform tailored for Australian government entities. It integrates modern tools such as Google Tag Manager and ReadSpeaker for analytics and accessibility. The site demonstrates good mobile optimization, accessibility, and SEO practices. However, performance metrics are unavailable, and some technical debt is evident in the lack of a valid SSL certificate and disabled TLS protocols, which critically impact security posture. From a security perspective, the absence of a valid SSL certificate and TLS support is a significant vulnerability, exposing users to potential data interception and undermining trust. While security headers like X-Content-Type-Options and X-Frame-Options are correctly implemented, the lack of HTTPS and session security mechanisms lowers the overall security score. Privacy compliance is partial, with a comprehensive privacy policy present but no cookie consent mechanism despite the use of tracking scripts. Contact information is clearly provided, enhancing business credibility. Overall, the website is a high-quality government portal with excellent content and user experience but suffers from critical security shortcomings that must be addressed urgently to protect users and maintain trust. Strategic improvements in SSL/TLS deployment, privacy compliance, and security best practices are recommended to elevate the site's security posture and compliance standards.

The website talent-alliance.com currently serves as a minimal placeholder with no substantive content, consisting solely of a frameset redirecting to talent-alliance.net. The domain is mature, registered since 2012, but the lack of content and absence of HTTPS indicates low digital maturity. The technical infrastructure is basic, hosted via EuroDNS with no SSL certificate installed, no modern security headers, and no privacy or cookie policies present. Security posture is weak with no encryption, no DNSSEC, and a misconfigured DMARC record pointing to a parking service. Overall, the site lacks business credibility and trust signals, which combined with minimal content, suggests it is either inactive or under development. Strategic recommendations include immediate SSL deployment, content development, and implementation of security best practices to improve trust and compliance.

The website innasol.com currently serves a security verification page that blocks access to any substantive content. The domain is mature, registered since 2010 with a reputable registrar, but the website itself lacks visible business information, contact details, or policies. Technically, the site uses nginx and Bootstrap with Google reCAPTCHA v3 for bot protection. However, it lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. The security posture is weak due to missing HTTPS, lack of security headers, and no incident response or security policy disclosures. Overall, the site appears to be in a protective mode, possibly to prevent automated access, but this severely limits the ability to assess the business or technical maturity. Strategic recommendations include implementing HTTPS, publishing clear business and security policies, and improving transparency to build trust.

H

Handel

handel.co.za

0

Handel is a South African-based small B2B marketing and communications agency offering a variety of services including brand positioning, content creation, event management, and digital marketing. The company targets business clients seeking creative and impactful marketing solutions. The website is built on HubSpot CMS and hosted behind Cloudflare, indicating a modern digital infrastructure. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. Security headers are partially implemented, but the absence of HTTPS significantly reduces the overall security posture. Privacy compliance is weak, with no privacy or cookie policies found. Contact information is clearly presented, enhancing business credibility. Overall, the site demonstrates good content quality and professional design but requires urgent security improvements.

C

CompaxDigital Software Development GmbH

compax.at

0

CompaxDigital Software Development GmbH is a technology company specializing in cloud-native Business Support Systems (BSS) and Operations Support Systems (OSS) software for telecommunications and related industries. The company offers a SaaS platform with agile delivery and operational support, targeting telecom service providers, MVNOs, ISPs, and enterprises requiring digital transformation solutions. Their market position is supported by partnerships with major telecom operators and industry memberships such as TM Forum. The website is professionally designed with rich content, customer logos, and whitepapers, reflecting a mature digital presence. Technically, the website is built on WordPress using the Divi theme and several plugins for enhanced functionality, hosted on WP Engine with Cloudflare CDN. However, performance is slow, and accessibility is basic. SEO is adequately implemented with proper meta tags and structured data. Mobile optimization is good. Security posture is weak due to the absence of a valid SSL certificate and HTTPS enforcement, lack of modern TLS protocols, and missing security headers like HSTS. No cookie consent mechanism is present despite the use of tracking scripts such as Google Analytics and HubSpot. No explicit security policies or incident response contacts are found. Overall, the website demonstrates strong business credibility and content quality but suffers from critical security shortcomings that should be addressed promptly to protect user data and improve trustworthiness.

T

TeDaLoS GmbH

tedalos.net

0

TeDaLoS GmbH is a small Austrian technology company specializing in cloud-based smart inventory monitoring solutions leveraging IoT devices. Their SaaS platform targets end users, technical wholesalers, and sensor manufacturers, providing real-time stock and consumption data to optimize supply chain and warehouse management. The website is professionally designed, content-rich, and consistent with the company's business focus. Technically, the site runs on WordPress with modern plugins for SEO, spam protection, and cookie consent, but lacks a valid SSL certificate and HTTPS support, which significantly impacts security posture. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the business appears legitimate and trustworthy, but the lack of HTTPS is a critical security gap that should be addressed promptly.

A

agru Kunststofftechnik GmbH

agru.at

0

AGRU Kunststofftechnik GmbH is a well-established Austrian manufacturer specializing in high-quality plastic piping systems and related products for industrial sectors such as energy, construction, and infrastructure. The company has a strong market position as a single-source supplier with a focus on innovation, quality, and employee orientation. Their website reflects a professional business presence with comprehensive product and market information, supported by active social media channels and a GDPR-compliant privacy framework. Technically, the site is built on TYPO3 CMS with modern frontend technologies but suffers from a critical lack of HTTPS, severely impacting security and trust. The absence of SSL/TLS encryption exposes users to risks and reduces the overall security posture. Privacy compliance is well addressed through cookie consent and a detailed privacy policy. However, direct contact information like emails or phone numbers is not explicitly provided, relying mainly on forms. Overall, the site is functional and informative but requires urgent security improvements to meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

C

Coloplast Group

coloplast.com

0

Coloplast is a mature, enterprise-level healthcare company headquartered in Denmark, specializing in intimate healthcare solutions such as ostomy, continence, bowel, wound, urology, and respiratory care. The company operates globally with a presence in over 100 countries and serves more than 2 million people annually. Their website reflects a professional and comprehensive digital presence, targeting healthcare professionals, patients, investors, and job seekers. Technically, the site uses modern JavaScript frameworks, Episerver CMS, and integrates multiple third-party services including Salesforce, Stripe, and Cookiebot. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by detailed investor relations and sustainability information. Overall, the site is professionally designed and trustworthy but requires urgent security improvements.

Lenze is a large manufacturing and technology company specializing in automation solutions for industrial machinery and systems. Their website targets industrial manufacturers and automation professionals, offering a broad portfolio of products, software, and services including training and aftersales support. The company maintains a strong global presence with localized content for Austria and other regions. Technically, the website is built on TYPO3 CMS with modern frontend technologies and good SEO and accessibility practices. However, a critical security weakness is the absence of a valid SSL certificate, resulting in no HTTPS support despite HSTS headers being present. Security headers and content security policies are well implemented, but the lack of SSL significantly reduces the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Contact information is primarily via contact forms and social media channels, with no explicit emails or phone numbers visible. Overall, the website is professional and trustworthy but requires urgent SSL implementation to improve security and user trust.

P

Palmers Textil AG

palmers.at

0

Palmers Textil AG operates a well-branded e-commerce website focused on retailing lingerie, nightwear, and fashion apparel primarily targeting German-speaking European customers. The site leverages modern web technologies including Vue Storefront 2 and Magento backend, supported by AWS CloudFront CDN and various marketing and analytics tools such as Google Analytics and Facebook Pixel. Despite a professional presentation and comprehensive privacy and cookie policies, the website suffers from a critical security deficiency: the absence of a valid SSL/TLS certificate and HTTPS support, exposing users to potential data interception risks. Security headers are implemented but cannot compensate for the lack of encryption. The domain registration data aligns well with the business claims, indicating legitimacy and consistency. Overall, the website demonstrates good digital maturity but requires urgent security improvements to protect user data and enhance trust.

Software Competence Center Hagenberg (SCCH) is a medium-sized research and development center based in Austria, specializing in software competence and computational intelligence for industrial applications. The organization maintains a strong market position with national and international partnerships, offering services in data science, software science, project collaboration, consulting, and training. The website content is professionally presented in German, targeting industry professionals, researchers, partners, and potential employees. The business model focuses on research and innovation in technology for industry advancement. Technically, the website is built on the Contao Open Source CMS platform, utilizing Apache server technology and modern JavaScript libraries such as jQuery and Slick Carousel. Hosting is managed via Azure DNS services. While the website demonstrates good mobile optimization and basic SEO practices, performance metrics indicate slow loading times. Accessibility features are basic but present. From a security perspective, the site implements several important HTTP security headers including Content Security Policy, X-Frame-Options, and X-XSS-Protection. However, a critical weakness is the invalid SSL certificate and lack of proper HTTPS support, which significantly undermines the security posture. No advanced incident response or security policy documentation is found on the site. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the website is trustworthy and professionally maintained but requires urgent remediation of SSL/TLS issues to ensure secure communications and improve the security score. Strategic recommendations include fixing the SSL certificate, enabling modern TLS protocols, and enhancing performance and accessibility to strengthen the digital presence and security posture.

F

Fraunhofer Austria Research GmbH

fraunhofer.at

0

Fraunhofer Austria Research GmbH is a well-established applied research partner for the Austrian industry, specializing in digital networking, automation, machine vision, artificial intelligence, factory planning, production management, supply chain management, and digital logistics. The company operates as part of the larger Fraunhofer-Gesellschaft, Europe's largest applied research organization, positioning itself as a key player in Industry 4.0 within Austria. Their business model focuses on applied research and development through industry collaborations and publicly funded projects. Technically, the website is built on an Apache server with Adobe Experience Manager CMS, utilizing RequireJS and standard web technologies. While the site is mobile-optimized and well-structured with good SEO practices, performance data is limited and suggests slow loading. Accessibility is basic but functional. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability. Although some security headers like HSTS, X-Content-Type-Options, and X-XSS-Protection are present, the absence of HTTPS severely undermines the security posture. No incident response or vulnerability disclosure policies are evident, and cookie consent mechanisms are missing, indicating partial privacy compliance. Overall, the website is professional and credible with clear business information and social media presence. However, the critical lack of HTTPS and incomplete privacy mechanisms present significant risks. Strategic improvements in SSL deployment, security policies, and privacy compliance are recommended to enhance trust and security.

P

ProSiebenSat.1 PULS 4

atv.at

0

ATV.at is the official website of the Austrian TV channel ATV, operated under the parent company ProSiebenSat.1 PULS 4. The site offers streaming of live TV, video on demand, and detailed program guides, targeting German-speaking audiences interested in entertainment and reality TV. The business model is primarily advertising-driven, leveraging partnerships with streaming platforms like JOYN to deliver content. The website demonstrates a high level of digital maturity with modern web technologies such as React and Next.js, providing a responsive and user-friendly experience across devices. However, the site currently lacks a valid SSL certificate, which is a critical security gap. While privacy and legal policies are comprehensive and GDPR compliant, the absence of HTTPS and security headers reduces the overall security posture. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Strategic improvements in SSL implementation and security headers are recommended to enhance user trust and compliance.

J

Josef Manner & Comp AG

manner.com

0

Josef Manner & Comp AG operates the website manner.com, a well-established Austrian confectionery brand specializing in Viennese wafer specialties since 1890. The website showcases a comprehensive product range, including wafers, baking products, gingerbread, and merchandise, targeting consumers interested in traditional confectionery. The brand maintains a consistent and professional online presence with rich content, social media integration, and e-commerce capabilities. Technically, the site uses modern technologies such as Vue.js, Algolia search, and Cookiebot for consent management, hosted likely on DigitalOcean. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that undermines user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website is professional and credible but requires urgent security improvements to meet modern standards.

M

Moody’s Analytics Austria GmbH

kompany.com

0

kompany is a specialized provider of real-time official company information and compliance solutions, operating as a Moody’s Analytics Austria GmbH subsidiary. The company offers services such as KYC, KYB, AML, and UBO compliance tools, credit and register reports, and entity verification across over 115 million companies globally. Their market position is strong due to Moody’s backing, targeting businesses requiring robust compliance and risk management data. Technically, the website uses modern JavaScript frameworks, Google Analytics 4, and Cloudflare for hosting and CDN services, but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and TLS protocols significantly reduces the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, kompany presents a professional and trustworthy business front with room for critical security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

N

Novellini S.p.A

novellini.com

0

Novellini S.p.A is a well-established Italian manufacturer specializing in bathroom products such as shower cubicles, whirlpool baths, and shower trays. The company maintains a strong international presence with localized websites for many countries, targeting consumers and businesses in the bathroom fixtures market. The website is professionally designed using Adobe Experience Manager CMS and includes modern JavaScript libraries and Google Tag Manager for analytics. However, the site lacks HTTPS, which is a critical security vulnerability, and does not provide visible privacy or cookie policies, impacting privacy compliance. Social media presence is active and official, enhancing brand trust. Overall, the website demonstrates good business credibility but requires urgent security improvements.

I

Incentage AG

incentage.com

0

Incentage AG is a Swiss-based software company specializing in innovative financial technology solutions for banking and financial institutions. Their offerings include modular platforms for payment processing, securities transactions, innovation acceleration, and risk management with cyber protection. The company positions itself as a pioneer in accelerating financial innovation with a focus on flexibility and end-to-end security. The website reflects a professional and consistent brand image targeting financial sector clients. Technically, the site uses modern web technologies including Webflow CMS, jQuery, Weglot for translations, and Google Tag Manager for analytics. Hosting is via Cloudflare, but a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a privacy policy, though no explicit security policy or incident response contacts are found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in SSL/TLS deployment and enhanced security practices are recommended to strengthen trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Z

Zeus Petruzalek

petruzalek.com

0

Zeus Petruzalek is a well-established B2B manufacturer and distributor specializing in food packaging products and packaging machines. As part of the Zeus Group, it operates across multiple countries with a strong market presence in the manufacturing sector. The website demonstrates a professional and comprehensive digital presence with multilingual support and extensive product catalogs. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and analytics tools, though performance metrics are not optimal. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, exposing the site to risks and reducing trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is credible and professional but requires urgent security improvements to protect user data and enhance trust.

The website sergiotanus.com currently serves as a minimal placeholder with an immediate redirect to a 'defaultsite' page and no substantive content or metadata. The domain is registered and hosted via Ionos with DNS records properly configured, including valid SPF records for email. However, the site lacks a valid SSL/TLS certificate and does not support HTTPS, which is a critical security deficiency. There are no privacy, cookie, or terms of service policies present, nor any contact or business information available on the site. Technically, the site is very basic with no detectable frameworks, scripts, or analytics, indicating low digital maturity. Security posture is weak due to the absence of HTTPS and security headers, and the site does not implement modern security best practices. Overall, the website appears inactive or underdeveloped, which significantly limits its business credibility and trustworthiness.

D

DR YIELD software & solutions GmbH

dryield.com

0

DR YIELD software & solutions GmbH is a mature technology company specializing in smart data analysis and AI-driven yield analytics for the semiconductor industry. With over 20 years of experience, the company offers the YieldWatchDog platform and related modules to help semiconductor manufacturers improve product quality, reduce costs, and accelerate yield ramp. The website reflects a professional B2B software provider with a global customer base and strong industry trust signals. Technically, the site is built on WordPress with Elementor and leverages Cloudflare for CDN and caching, alongside Matomo for analytics. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, leaving the site without HTTPS protection. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is content-rich and professionally presented but requires urgent security improvements to protect user data and enhance trust.

M

Mundipharma International Limited

mundipharma.com

0

Mundipharma International Limited operates a global healthcare website focused on pharmaceutical and consumer health products with a strong patient-centric approach. The website targets healthcare professionals, patients, and partners, providing corporate information, career opportunities, and media resources. The digital infrastructure is built on Drupal CMS with integrations including Google Analytics, Hotjar, and various marketing and tracking tools, hosted behind Cloudflare CDN. While the website content is professionally presented with good navigation and mobile optimization, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which are critical issues that must be addressed to ensure secure communications and user trust. Privacy and cookie policies are comprehensive and GDPR compliant, but no explicit security policy or incident response information is publicly available. Overall, the website is credible and professionally maintained but requires urgent SSL/TLS remediation to improve security and trust.

Y

YTMP3

jobrocker.com

0

The website jobrocker.com operates as an online YouTube to MP3 and MP4 conversion service branded as YTMP3. It targets a broad audience including casual listeners, educators, and content creators by providing a free, fast, and easy-to-use tool without requiring registration or payments. The site emphasizes speed, audio quality, and simplicity, positioning itself as a reliable alternative to other converters. Technically, the site uses standard web technologies with Cloudflare CDN and Google Analytics for tracking, but lacks HTTPS encryption, which is a significant security concern. The absence of cookie consent and privacy compliance mechanisms further impacts user privacy. The domain is very new, registered in early 2025, consistent with the site's recent launch. Security posture is weak due to missing SSL and security headers, and no incident response or security policy information is provided. Overall, the site offers functional service but requires urgent security improvements to protect users and enhance trust.

D

Domain has been suspended

riseragency.com

0

The website riseragency.com is currently inaccessible for normal business operations as it displays a suspension notice due to failure to verify the registrant email address within the ICANN mandated 15-day period. No business-related content, contact information, or service descriptions are available, indicating the site is non-operational. The technical infrastructure is minimal, running on an Apache server with no SSL/TLS certificate, serving content over HTTP only. The presence of Google reCAPTCHA v2 on the suspension form suggests some basic bot protection on the verification process. Security posture is weak with no HTTPS, no modern TLS protocols, and no security headers implemented. The domain is registered and not vulnerable to subdomain takeover, but the suspension status and lack of compliance with ICANN email verification requirements significantly reduce trust and operational credibility. Overall, the site scores very low on content quality, security, privacy compliance, and business credibility, making it unsuitable for any business or customer engagement at this time.

M

Mersen

mersen.com

0

Mersen is a global industrial company specializing in electrical power and advanced materials, serving high-tech industries with customized solutions and key products. The company operates worldwide with over 50 industrial sites and 21 R&D centers across 33 countries, positioning itself as a leader in its sector. The website reflects a mature digital presence with comprehensive content, multi-language support, and active social media engagement. Technically, the site is built on Drupal 10 and leverages modern CDN and observability tools, but lacks a valid SSL certificate and modern TLS support, which is a critical security gap. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit security policy or incident response information is provided. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect users and maintain credibility.