Skip to main content

Is fabrics.lv a Scam? Security Check Results - Audums Plus Reviews

A

Is fabrics.lv Safe? Security Analysis for Audums Plus

http://fabrics.lv/lv/courses.php

Check if fabrics.lv is a scam or legitimate. Free security scan and reviews.

RetailLatviamedium
jQuery 1.11.1jQuery Cycle2jQuery RoundaboutjQuery UICSS stylesheets+1 more
Analyzed 7/30/2025Completed 8:29:16 PM
37
Security Score
HIGH RISK

AI Summary

Audums Plus operates a Latvian-based e-commerce platform specializing in textiles, curtains, and related sewing and home decor accessories. Established in 1992, the company offers a broad product catalog sourced from European and Asian manufacturers, targeting both retail consumers and businesses interested in home textile products. The website supports Latvian, Russian, and English languages, enhancing accessibility for regional customers. The business model combines online sales with physical stores and curtain design services, positioning Audums Plus as a well-established player in the Latvian textile retail market. Technically, the website employs legacy JavaScript libraries such as jQuery 1.11.1 and various jQuery plugins for UI and carousel functionalities. The site is moderately optimized for mobile devices and provides basic SEO and accessibility features. However, the use of outdated libraries introduces potential security vulnerabilities. The site includes a cookie consent banner and a privacy policy page, indicating some level of privacy compliance, though no advanced security policies or incident response information are publicly available. From a security perspective, the site lacks visible security headers and uses outdated JavaScript libraries, which could expose it to known vulnerabilities. HTTPS usage is assumed but not explicitly confirmed in the provided data. The absence of WHOIS data due to query limits restricts full domain legitimacy verification. Tracking via Google Analytics and DoubleClick is present, with moderate user tracking levels. No critical security issues or adult content were detected, and the site appears safe for general audiences. Overall, Audums Plus presents a moderately secure and professionally maintained e-commerce platform with room for improvement in technical modernization and security hardening. Strategic recommendations include updating JavaScript libraries, implementing security headers, enforcing HTTPS, and publishing clear security and incident response policies to enhance trust and compliance.

Detected Technologies

jQuery 1.11.1jQuery Cycle2jQuery RoundaboutjQuery UICSS stylesheetsResponsiveSlides

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Audums Plus holds a solid market position in Latvia's textile retail sector, leveraging a long operational history since 1992. Its competitive advantage lies in a comprehensive product range covering fabrics, sewing accessories, embroidery supplies, and home textiles, combined with curtain design and sewing services. The business targets both individual consumers and businesses requiring textile products and services. Revenue streams primarily derive from online and physical store sales. The company maintains an active social media presence across Pinterest, Twitter, Instagram, and Facebook, supporting brand visibility and customer engagement. Partnerships with web-design.lv for website development are evident. Growth indicators include regular promotions and a multilingual website catering to regional markets. The absence of WHOIS data limits insights into ownership structure and potential subsidiaries.

Extracted Contact Information

Marketing Intelligence Data

Phone Numbers (2)

+3716731****
+3712544****

Security Posture Analysis

Comprehensive Security Assessment

The current security maturity level of Audums Plus is moderate but shows gaps. The use of outdated jQuery 1.11.1 exposes the site to known vulnerabilities, increasing risk of client-side attacks. Lack of security headers such as Content-Security-Policy and X-Frame-Options reduces protection against common web threats. The cookie consent mechanism and privacy policy indicate some compliance with GDPR, but no explicit security or incident response policies are published. No evidence of vulnerability disclosure programs or security certifications was found. Incident response readiness appears minimal based on public information. Data protection officer contact details are not provided. Overall, the security culture seems basic, with opportunities to enhance defenses and compliance posture.

Strategic Recommendations

Priority Actions for Security Improvement

1

Upgrade all JavaScript libraries, especially jQuery, to the latest secure versions to mitigate known vulnerabilities.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Audums Plus

Description:

Online store specializing in curtains and textile products design, fabrics, sewing accessories, and textile decoration products from European and Asian manufacturers. Offers a wide range of fabrics, sewing supplies, embroidery items, and home textiles with regular discounts and promotions.

Key Services:
Online fabric and accessories salesCurtain design and sewing servicesHome textile productsEmbroidery and handicraft supplies
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
jQuery 1.11.1jQuery Cycle2jQuery RoundaboutjQuery UICSS stylesheetsResponsiveSlides
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:
55/100
Best Practices:
  • Cookie consent mechanism

Analytics & Tracking

Services:
Google Analytics
Tracking Level:moderate
Privacy Compliance:basic

Advertising & Marketing

Ad Networks:
Google DoubleClick
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:moderate

Key Observations

1

Website is a Latvian textile and curtain e-commerce store with physical presence.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

20/100
Score

Missing Strict-Transport-Security header

HIGH

Forces HTTPS connections

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

10/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

EU business without adequate privacy measures

CRITICAL

EU businesses are subject to strict GDPR requirements

Third-party services without privacy policy

HIGH

Detected services: Facebook, Twitter, Google Ads

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: energy, transport, banking, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

40/100
Score

No SPF record found

HIGH

SPF helps prevent email spoofing

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

62/100
Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 59 days

Mixed Content Detected

MEDIUM

1 resources loaded over insecure HTTP

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

75/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

No DMARC Record

MEDIUM

DMARC policy not configured

DNS Records

A Records:89.111.38.211
Name Servers:
aida.ns.cloudflare.comDNS only
nile.ns.cloudflare.comDNS only
SOA:Serial: 2379360758, TTL: 1800s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:68ms

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

20/100
Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

Service Exposed: SSH

MEDIUM

Port 22 (SSH) is publicly accessible - SSH - Secure but can be brute-forced

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website relies on legacy JavaScript libraries such as jQuery 1.11.1 and plugins like Cycle2 and Roundabout for UI components and carousels. CSS stylesheets and responsive design elements provide basic mobile optimization. The site lacks modern frameworks or CMS indications, suggesting a custom or legacy platform. Performance is moderate with no explicit optimization indicators. SEO is basic with meta viewport and title tags present but no advanced structured data or Open Graph tags detected. Accessibility features are minimal but functional. Hosting provider and CMS details are not discernible from the HTML content. Technical debt is evident due to outdated libraries and lack of modern security practices, posing risks to business continuity and user trust.
Analyze Another Website