Skip to main content

Is lizhiinc.com a Scam? Security Check Results - Sound Group Inc. Reviews

lizhiinc.com favicon

Is lizhiinc.com Safe? Security Analysis for Sound Group Inc.

https://lizhiinc.com

Check if lizhiinc.com is a scam or legitimate. Free security scan and reviews.

TechnologyChinalarge
jQuery 2.1.4Swiper 3.4.2
Analyzed 8/2/2025Completed 8:01:45 AM
62
Security Score
MEDIUM RISK

AI Summary

Lizhi Inc. operates as a leading internet audio company under the Nasdaq-listed Sound Group Inc., offering a global audio ecosystem that integrates voice social networking, podcast content, and audio communities. Their key products include the Lizhi App, Lizhi Podcast, and TIYA, targeting a young, engaged audience interested in audio content creation and consumption. The company positions itself as a pioneer in China's online audio market with a diversified product matrix and strategic partnerships. Technically, the website uses legacy JavaScript libraries such as jQuery 2.1.4 and Swiper 3.4.2 for UI components, with moderate mobile optimization and basic SEO practices. Security posture is moderate but lacks visible security headers and cookie consent mechanisms, which are areas for improvement. The absence of WHOIS data for the domain is a notable anomaly that impacts trustworthiness despite the professional presentation and Nasdaq listing. Overall, Lizhi Inc. demonstrates a solid business presence with room for technical and security enhancements.

Detected Technologies

jQuery 2.1.4Swiper 3.4.2

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Lizhi Inc. holds a strong market position as a Nasdaq-listed internet audio enterprise, leveraging a multi-product strategy to engage over 200 million young users in China. Their competitive advantage lies in combining social audio, podcasting, and community features, supported by collaborations with automotive and corporate brands. Revenue streams likely include advertising, branded podcasts, and premium services. The company’s ecosystem approach fosters user-generated content and high engagement, positioning it well for growth in the expanding audio content market. Partnerships with related domains such as lzpipi.com and lizhi.fm enhance their service offerings. However, the lack of transparent WHOIS data and limited visible contact information may pose challenges in trust and regulatory compliance.

Security Posture Analysis

Comprehensive Security Assessment

The website currently exhibits a moderate security maturity level. HTTPS is presumably enabled (inferred from external image URLs using https), but no explicit security headers were detected in the provided data. There is no evidence of cookie consent or GDPR compliance mechanisms, which is critical given the global user base. No incident response or security policy information is publicly available, and no vulnerability disclosure or security.txt files were found. The absence of WHOIS data raises concerns about domain registration transparency. To improve security posture, Lizhi Inc. should implement comprehensive security headers, enforce cookie consent, publish security policies, and ensure domain registration details are accurate and publicly accessible.

Strategic Recommendations

Priority Actions for Security Improvement

1

Implement and enforce comprehensive security headers including Content-Security-Policy, X-Frame-Options, and Strict-Transport-Security.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Sound Group Inc.

Description:

荔枝集团(NASDAQ:LIZI)打造了一个集声音社交、播客内容、音频社区为一体的全球化音频生态系统,旗下拥有荔枝App、荔枝播客、TIYA产品,致力于通过声音连接用户,帮助人们展现声音才华。

Key Services:
荔枝App荔枝播客TIYA产品
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
jQuery 2.1.4Swiper 3.4.2
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:
50/100

Analytics & Tracking

Tracking Level:minimal
Privacy Compliance:basic

Advertising & Marketing

Transparency Level:poor

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:high

Key Observations

1

Website is fully accessible with rich content in Chinese.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

70/100
Score

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

50/100
Score

No Privacy Policy found

HIGH

GDPR requires a clear and accessible privacy policy

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

GDPR Compliance Analysis

Privacy Policy0% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

2/100
Score

No information security framework found

HIGH

NIS2 requires documented cybersecurity and information security measures

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No security policy documentation found

HIGH

NIS2 requires documented cybersecurity governance and risk management

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No business continuity planning found

MEDIUM

NIS2 emphasizes operational resilience and business continuity

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

Critical sector without clear security compliance

HIGH

Detected sectors: transport

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

65/100
Score

DMARC not enforcing

MEDIUM

DMARC policy is set to "none"

Weak DKIM Key

HIGH

DKIM selector 'dkim' uses 384-bit key

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 ip4:117.122.212.162 ip4:123.59.207.145 ip4:129.227.85.246 include:spf.icoremail.net -all
DNS Lookups:1/10
Policy:-all
DKIM Selectors Found
Selector:dkim(384-bit rsa)
DMARC Details
Policy:none
Aggregate Reports:mailops@lizhi.fm
Forensic Reports:mailops@lizhi.fm

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

75/100
Score

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 66 days

Weak SSL Key Length

HIGH

SSL certificate uses 256-bit key, which is considered weak

Partial SSL/TLS Assessment

LOW

Completed 2 of 4 security checks due to time constraints

Certificate Details

Subject:www.lizhiinc.com
Issuer:WE1
Valid Until:10/8/2025 (66 days)
SANs:www.lizhiinc.com

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

65/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Transfer Lock Not Enabled

MEDIUM

Domain can be transferred without authorization

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

DMARC Policy Set to None

LOW

DMARC is configured but not enforcing any policy

Domain Registration Details

Domain Age
4 years(established)
Expiry Risk
medium(12 days)
Protection Level
noneDNSSEC OFF
Suspicious Indicators Detected
  • No domain protection locks enabled

DNS Records

A Records:47.241.117.47
Name Servers:
f1g1ns1.dnspod.net
f1g1ns2.dnspod.net
MX Records:
30: mail.lizhiinc.com
10: mx-gzlzfm-com.icoremail.net
SOA:Serial: 1752119050, TTL: 180s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:403ms

SPF Analysis

SPF Record:
v=spf1 ip4:117.122.212.162 ip4:123.59.207.145 ip4:129.227.85.246 include:spf.icoremail.net -all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website uses older JavaScript libraries such as jQuery 2.1.4 and Swiper 3.4.2, which may pose security and performance risks if not regularly updated. The site is moderately optimized for mobile devices and has a clear navigation structure. SEO practices are basic, with meta tags present but no advanced structured data like JSON-LD or Open Graph tags detected. No CMS or hosting provider information was identified. Performance is moderate, with large banner images that may impact load times. Accessibility features are minimal. Modernization opportunities include upgrading JavaScript libraries, enhancing SEO with structured data, improving accessibility, and optimizing image delivery for faster performance.
Analyze Another Website