Skip to main content

Is wasabisys.com a Scam? Security Check Results - Wasabi Technologies Reviews

W

Is wasabisys.com Safe? Security Analysis for Wasabi Technologies

https://wasabisys.com

Check if wasabisys.com is a scam or legitimate. Free security scan and reviews.

TechnologyUnited Stateslarge
ReactNode.jsAWS S3 Compatible APIsGoogle Tag ManagerGoogle Analytics
Analyzed 9/4/2025Completed 11:40:42 PM
68
Security Score
MEDIUM RISK

AI Summary

Wasabi Technologies is a prominent cloud storage provider specializing in fast, low-cost, and reliable cloud object storage solutions tailored for businesses and enterprises. The company positions itself competitively in the cloud storage market by offering scalable and secure storage services that cater to IT professionals and organizations requiring efficient data backup, archiving, and disaster recovery solutions. Their website reflects a mature digital presence with professional design, clear navigation, and comprehensive content that aligns with their business objectives. Technically, the website leverages modern web technologies including React and Material UI, ensuring a responsive and performant user experience across devices. The infrastructure appears robust, with indications of cloud hosting and integration of analytics and marketing tools such as Google Analytics and Tag Manager. The site demonstrates good SEO and accessibility practices, contributing to its overall digital maturity. From a security perspective, Wasabi exhibits a strong posture with HTTPS enforcement, multiple security headers, and public disclosure of security policies and incident response contacts. The presence of industry certifications like ISO 27001 and SOC 2 Type II further reinforces their commitment to security and compliance. No significant vulnerabilities or security misconfigurations were detected, though enabling DNSSEC and publishing a security.txt file could enhance their security transparency. Overall, Wasabi Technologies presents a low-risk profile with a professional and trustworthy online presence. Strategic recommendations include enhancing DNS security, formalizing vulnerability disclosure via security.txt, and continuous monitoring of third-party dependencies to maintain security integrity.

Detected Technologies

ReactNode.jsAWS S3 Compatible APIsGoogle Tag ManagerGoogle Analytics

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Wasabi Technologies operates in the technology sector, focusing on cloud storage services with a SaaS business model. Their market positioning targets enterprises and businesses seeking cost-effective and high-performance cloud storage alternatives. Competitive advantages include their pricing model, performance claims, and compliance certifications. Revenue streams likely derive from subscription-based cloud storage plans and enterprise contracts. The company maintains a strong partnership ecosystem, including integrations with major cloud providers and technology platforms. Growth indicators are positive given their comprehensive service offerings and visible customer endorsements. Operationally, the company emphasizes security and compliance, which is critical for their target market segments.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (4)

s*****@wasabi.com
a*****@wasabi.com
i*****@wasabi.com
s*****@wasabi.com

Phone Numbers (1)

+1866699****

Physical Addresses (1)

225 W. 35th Street, 15th Floor, New York, NY 10001, USA

Security Posture Analysis

Comprehensive Security Assessment

The security maturity of Wasabi Technologies is high, supported by industry-standard certifications and a well-implemented security framework. The website enforces HTTPS, employs multiple security headers, and provides clear security policies and incident response contacts. No exposed sensitive data or vulnerable libraries were identified in the analysis. Compliance with GDPR and HIPAA is indicated, reflecting attention to data protection regulations. Incident response readiness is demonstrated through dedicated security contact emails. However, the absence of a security.txt file and DNSSEC implementation are minor gaps. Overall, the security culture appears proactive and aligned with best practices.

Strategic Recommendations

Priority Actions for Security Improvement

1

Enable DNSSEC on the domain to protect against DNS spoofing and improve DNS security.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Wasabi Technologies

Description:

Wasabi provides fast, low-cost, and reliable cloud storage solutions designed for businesses and enterprises seeking scalable and secure data storage.

Key Services:
Cloud Object StorageData BackupDisaster RecoveryArchiving
Content Quality:

excellent

Branding:

consistent

Technical Stack

Technologies:
ReactNode.jsAWS S3 Compatible APIsGoogle Tag ManagerGoogle Analytics
Frameworks:
Material UI
Platforms:
Cloud Hosting
Performance:

fast

Mobile:

excellent

Accessibility:

good

SEO:

good

Security Assessment

Security Score:
90/100
Best Practices:
  • HTTPS enforced
  • ClientTransferProhibited domain status
  • Security policy and incident response information publicly available
  • Use of security certifications

Analytics & Tracking

Services:
Google AnalyticsGoogle Tag Manager
Tracking Level:moderate
Privacy Compliance:good

Advertising & Marketing

Ad Networks:
Google DoubleClick
Transparency Level:good

Website Quality Assessment

Design Quality:excellent
User Experience:excellent
Content Relevance:excellent
Navigation Clarity:excellent
Professionalism:excellent
Trustworthiness:high

Key Observations

1

Website is fully accessible with no blocking or WAF challenges.

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

40/100
Score

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing Content-Security-Policy header

HIGH

Controls resources the browser is allowed to load

Missing X-XSS-Protection header

MEDIUM

Legacy XSS protection (deprecated but still recommended)

Missing Referrer-Policy header

LOW

Controls referrer information sent with requests

Missing Permissions-Policy header

MEDIUM

Controls browser features and APIs

Sensitive data may be cached

LOW

Cache-Control header should include "no-store" for sensitive pages

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

58/100
Score

No Cookie Policy found

HIGH

GDPR requires clear information about cookie usage

No Cookie Consent Banner found

HIGH

GDPR requires explicit consent for non-essential cookies

Privacy policy may not be GDPR compliant

MEDIUM

Privacy policy lacks explicit GDPR compliance elements

GDPR Compliance Analysis

Privacy Policy85% confidence
Cookie Policy0% confidence
Contact Information Found90% confidence
phone

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

55/100
Score

No vulnerability disclosure policy

MEDIUM

NIS2 encourages coordinated vulnerability disclosure

No incident response procedures found

HIGH

NIS2 requires documented incident response and business continuity plans

No security contact information

HIGH

NIS2 requires clear incident reporting channels

No vulnerability reporting mechanism

MEDIUM

Clear vulnerability reporting supports coordinated disclosure

No NIS2 reference found

LOW

Consider explicitly mentioning NIS2 compliance efforts

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

70/100
Score

Complex SPF record

LOW

Too many include statements can cause lookup limits

No DMARC reporting

LOW

DMARC aggregate reports not configured

DMARC Partial Enforcement

LOW

DMARC only applies to 70% of messages

Strict DMARC Alignment

LOW

Strict alignment may cause legitimate emails to fail

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 a mx ip4:216.71.150.115 include:spf.mandrillapp.com include:stspg-customer.com include:_spf.salesforce.com include:spf.protection.outlook.com include:_spf.ultipro.com include:_spf01.mykronos.com -all
DNS Lookups:8/10
Policy:-all
DKIM Selectors Found
Selector:google(1416-bit rsa)
Selector:k1(1296-bit rsa)
Selector:selector1(1416-bit rsa)
Selector:s1(1440-bit rsa)
DMARC Details
Policy:quarantine(70% enforcement)

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

52/100
Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 47 days

Weak SSL Key Length

HIGH

SSL certificate uses 256-bit key, which is considered weak

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

80/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

Domain Registration Details

Domain Age
28 years(mature)
Expiry Risk
none(1431 days)
Protection Level
basicDNSSEC OFF

DNS Records

A Records:3.33.186.135, 15.197.167.90
Name Servers:
ns1.dnsimple.com
ns2.dnsimple.com
ns3.dnsimple.com
ns4.dnsimple.com
MX Records:
10: wasabi-com.mail.protection.outlook.com
SOA:Serial: 1493299610, TTL: 300s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:77ms

SPF Analysis

SPF Record:
v=spf1 a mx ip4:216.71.150.115 include:spf.mandrillapp.com include:stspg-customer.com include:_spf.salesforce.com include:spf.protection.outlook.com include:_spf.ultipro.com include:_spf01.mykronos.com -all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100
Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built using modern JavaScript frameworks such as React and styled with Material UI, ensuring a responsive and accessible user interface. Hosting appears to be on a cloud platform, likely AWS or similar, supporting scalability and reliability. Performance is optimized with fast loading times and mobile optimization. SEO best practices are followed with proper meta tags and structured data. The technical stack is current with no significant technical debt observed. Opportunities exist to further modernize by adopting DNSSEC and enhancing security disclosure mechanisms. Technical risks are minimal but should be monitored continuously to maintain operational stability.
Analyze Another Website