Skip to main content

Is 360002.com a Scam? Security Check Results - 厦门博久网络 Reviews

Is 360002.com Safe? Security Analysis for 厦门博久网络

https://360002.com

Check if 360002.com is a scam or legitimate. Free security scan and reviews.

TechnologyChinamedium
jQuery 1.11.1Swiper.jsWOW.jsCSS3 animationsHTML5
Analyzed 8/3/2025Completed 7:15:03 AM
35
Security Score
HIGH RISK

AI Summary

The website 360002.com represents a professional digital services company named 厦门博久网络, specializing in website construction, design, development, and optimization primarily targeting businesses in Xiamen, China. The company emphasizes high-end, responsive website solutions and small program development, boasting over ten years of experience and more than 10,000 successful cases. Their market position is that of a reputable local service provider with a medium-sized operation and a consistent brand presence. Technically, the website employs common web technologies such as jQuery 1.11.1, Swiper.js for carousels, and WOW.js for animations. The site is mobile-optimized with good SEO practices but lacks advanced accessibility features. Performance is moderate, and no CMS or hosting provider details are evident. Security-wise, the site lacks visible security headers and privacy-related policies, and the use of an outdated jQuery version may introduce vulnerabilities. HTTPS status is unknown from the data provided, which is a critical gap. The security posture is moderate with no immediate vulnerabilities detected in the HTML content, but the absence of privacy and cookie policies and security headers indicates compliance and security weaknesses. No incident response or vulnerability disclosure information is available, limiting the site's transparency and readiness for security events. Overall, the website is professional and business-focused but requires improvements in security, privacy compliance, and technical modernization to enhance trust and reduce risk. Strategic recommendations include implementing HTTPS, publishing privacy and cookie policies, adding security headers, updating libraries, and establishing incident response protocols.

Detected Technologies

jQuery 1.11.1Swiper.jsWOW.jsCSS3 animationsHTML5

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

厦门博久网络 operates in the technology sector, focusing on website construction and digital marketing services. Their competitive advantage lies in extensive local experience, a large portfolio of successful projects, and a comprehensive service offering including enterprise websites, e-commerce platforms, and mini-program development. The business model is service-oriented, targeting SMEs and enterprises needing digital presence enhancement. The company leverages partnerships with various external domains for link exchanges and marketing. Growth indicators include a steady content update with knowledge articles and a broad service menu. However, the lack of visible certifications or compliance documentation may limit appeal to highly regulated sectors.

Extracted Contact Information

Marketing Intelligence Data

Phone Numbers (1)

249******

Security Posture Analysis

Comprehensive Security Assessment

The current security maturity level is moderate but with notable gaps. The absence of HTTPS confirmation and security headers reduces protection against common web attacks. The use of an outdated jQuery version (1.11.1) could expose the site to known vulnerabilities. No privacy or cookie policies are published, indicating non-compliance with GDPR and similar regulations. Incident response readiness is unclear due to lack of contact channels for security issues. No vulnerabilities or malware detected in the provided content, but improvements are necessary to meet modern security standards and regulatory requirements.

Strategic Recommendations

Priority Actions for Security Improvement

1

Implement HTTPS with a valid SSL/TLS certificate and enforce secure connections site-wide.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

厦门博久网络

Description:

博久网是一家拥有十年厦门网站建设经验,超过10000余成功案例,专业的网站建设团队为您提供厦门网站建设,厦门网站制作,厦门网站设计,厦门网站优化,高端网站建设等服务,始终坚持品质第一,服务至上,为客户提供一站式网站建设解决方案!

Key Services:
企业网站建设电商网站开发小程序开发制作微信公众号/APP开发
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
jQuery 1.11.1Swiper.jsWOW.jsCSS3 animationsHTML5
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:
50/100
Best Practices:
  • No exposed sensitive data in HTML
  • No visible vulnerable libraries

Analytics & Tracking

Tracking Level:minimal
Privacy Compliance:poor

Advertising & Marketing

Tracking Pixels:
Baidu linksubmit push.js
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:moderate

Key Observations

1

Website is a professional service provider for website construction and related digital services in Xiamen, China.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

30/100
Score

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

50/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: transport

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

50/100
Score

Email Security Check Incomplete

MEDIUM

Some email security checks timed out

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100
Score

Unable to retrieve SSL certificate

CRITICAL

Could not establish secure connection to retrieve certificate information

Mixed Content Detected

MEDIUM

7 resources loaded over insecure HTTP

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

85/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

DNS Records

A Records:103.41.80.17
Name Servers:
cecilia.dnspod.netDNS only
ovary.dnspod.netDNS only

DNSSEC Status

DNSSEC Not Enabled

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

0/100
Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

Critical Service Exposed: MySQL

CRITICAL

Port 3306 (MySQL) is publicly accessible - MySQL - Database server

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website uses a traditional front-end stack with jQuery 1.11.1, Swiper.js for interactive carousels, and WOW.js for animation effects. The HTML structure is valid and includes meta tags for SEO and viewport settings for mobile responsiveness. However, the jQuery version is outdated, which may pose security risks. No CMS or backend platform is identified, suggesting a custom or static site. Performance is moderate with some optimization potential. Accessibility is basic, lacking ARIA roles or landmarks. SEO is supported by meta keywords and descriptions but could be enhanced with structured data. Hosting provider and SSL configuration details are not available, limiting full technical assessment.
Analyze Another Website