What is the security status of yoolv.com?

yoolv.com has a security score of 44/100, rated as Potentially Unsafe. The website may have security concerns that should be addressed.

Is yoolv.com safe to use?

Our security scan shows yoolv.com is Potentially Unsafe. SSL security issues detected. Always practice safe browsing habits.

Does yoolv.com have viruses?

Our comprehensive security scan analyzes multiple security factors. Based on the overall security score of 44/100, the website is rated as Potentially Unsafe. However, websites can change over time, so always use updated security software.

What is yoolv.com's trust score?

yoolv.com has a security score of 44/100. This score is based on multiple factors including SSL security, security headers, DNS health, and compliance checks.

Is yoolv.com Safe? Security Analysis for 巨富金业

https://yoolv.com

Check if yoolv.com is a scam or legitimate. Free security scan and reviews.

FinanceN/asmall

JavaScript ES ModulesVite build toolAnt Design Icons

Analyzed 8/3/2025Completed 11:06:01 PM

Security Score

HIGH RISK

AI Summary

The website seo.macrobullion.net represents a Chinese-language online platform named 巨富金业, offering precious metals trading services such as spot gold and London gold investments. It positions itself as a legitimate and licensed trading platform with claims of holding a Hong Kong Gold Exchange AA class 229 license. However, the website content is minimal and primarily a single-page application with limited static content and no visible contact or compliance documentation. Technically, the site uses modern JavaScript frameworks and build tools like Vite and likely Vue.js, but lacks visible security headers and privacy policies. The WHOIS data for the subdomain seo.macrobullion.net is unavailable, indicating either a subdomain without separate registration or a new/unregistered domain, which raises concerns about legitimacy and transparency. Overall, the site shows basic technical implementation but lacks critical security and compliance features.

Detected Technologies

JavaScript ES ModulesVite build toolAnt Design Icons

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

巨富金业 targets investors interested in precious metals trading, focusing on the Chinese-speaking market. The business model is an online trading platform for gold and precious metals, claiming regulatory licensing to build trust. The lack of verifiable WHOIS data and absence of contact information or compliance policies limits confidence in the business credibility. The platform uses CNZZ analytics for user tracking and basic advertising. There is no evidence of partnerships or subsidiaries. The company appears small and focused on niche financial services within the Chinese market.

Security Posture Analysis

Comprehensive Security Assessment

The security posture is weak due to missing HTTPS verification in the provided data, absence of security headers, and no visible privacy or cookie policies. No incident response or vulnerability disclosure information is present. The use of modern JavaScript frameworks is positive but without security best practices visible. The lack of WHOIS data and domain registration transparency further reduces trust. No forms or input fields were detected, reducing attack surface but also limiting user engagement features. Overall, the site requires significant improvements in security and compliance to meet industry standards.

Strategic Recommendations

Priority Actions for Security Improvement

Implement and enforce HTTPS with a valid SSL certificate and strong TLS configuration.

✨Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

巨富金业

Description:

巨富金业是安全稳定的贵金属交易平台,为投资者提供现货黄金交易,伦敦金投资,炒黄金开户等贵金属交易服务,持有香港黄金交易所AA类229号号行员牌照,正规合法贵金属交易平台.

Key Services:

现货黄金交易伦敦金投资炒黄金开户

Content Quality:

basic

Branding:

moderate

Technical Stack

Technologies:

JavaScript ES ModulesVite build toolAnt Design Icons

Frameworks:

Vue.js (implied by Vite and .vue style imports)

Performance:

moderate

Mobile:

basic

Accessibility:

basic

SEO:

basic

Security Assessment

Security Score:

40/100

Analytics & Tracking

Services:

CNZZ

Tracking Level:moderate

Privacy Compliance:poor

Advertising & Marketing

Ad Networks:

CNZZ

Tracking Pixels:

CNZZ

Transparency Level:basic

Website Quality Assessment

Design Quality:basic

User Experience:basic

Content Relevance:basic

Navigation Clarity:basic

Professionalism:basic

Trustworthiness:moderate

Key Observations

Website is a single-page application with minimal static content

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

30/100

Score

Missing X-Frame-Options header

HIGH

Prevents clickjacking attacks

Missing X-Content-Type-Options header

MEDIUM

Prevents MIME type sniffing

Critical sector without clear security compliance

HIGH

Detected sectors: transport, digital

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

60/100

Score

No DKIM record found

MEDIUM

DKIM adds cryptographic signatures to emails

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

No email authentication configured

CRITICAL

Domain is vulnerable to email spoofing

SPF

Sender Policy Framework

DKIM

DomainKeys Identified Mail

DMARC

Domain-based Message Authentication

MX Records

Mail Exchange Records

BIMI

Brand Indicators

MTA-STS

Mail Transfer Agent Security

TLS-RPT

TLS Reporting

DNSSEC

DNS Security

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

0/100

Score

Unable to retrieve SSL certificate

CRITICAL

Could not establish secure connection to retrieve certificate information

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

65/100

Score

No Name Servers Found

HIGH

Unable to find name servers for domain

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

DNS Records

A Records:138.113.181.177, 163.171.242.14

AAAA Records:2a01:53c0:ff06::53, 2607:3f40:ff18::a5

DNSSEC Status

DNSSEC Not Enabled

⚡Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

100/100

Score

Good Network Security Posture

LOW

No unnecessary services detected on common risky ports

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built using modern front-end technologies including ES modules and Vite as the build tool, likely leveraging Vue.js framework. The site loads multiple JavaScript modules and stylesheets asynchronously, indicating a modular and modern architecture. However, the performance is moderate with basic mobile optimization and accessibility features. No CMS or hosting provider information is discernible. The site lacks SEO optimization beyond basic meta tags. There is no evidence of server-side rendering or advanced performance optimizations. The absence of security headers and HTTPS status is a technical risk. Overall, the technical infrastructure is modern but incomplete in security and compliance aspects.

Analyze Another Website

Is yoolv.com a Scam? Security Check Results - 巨富金业 Reviews

Is yoolv.com Safe? Security Analysis for 巨富金业

AI Summary

Detected Technologies

🧠AI Business Intelligence

Business Intelligence

Security Posture Analysis

Strategic Recommendations

✨Observations

AI-Enhanced Website Analysis

Business Insights

Technical Stack

Security Assessment

Analytics & Tracking

Advertising & Marketing

Website Quality Assessment

Key Observations

🛡️Security Headers

Security Headers

Missing X-Frame-Options header

Missing X-Content-Type-Options header

Missing Content-Security-Policy header

Missing X-XSS-Protection header

Missing Referrer-Policy header

Missing Permissions-Policy header

Sensitive data may be cached

👤GDPR Compliance

GDPR Compliance

No Privacy Policy found

No Cookie Policy found

No Cookie Consent Banner found

GDPR Compliance Analysis

🛡️NIS2 Compliance

NIS2 Compliance

No information security framework found

No vulnerability disclosure policy

No security policy documentation found

No incident response procedures found

No business continuity planning found

No security contact information

No vulnerability reporting mechanism

No NIS2 reference found

Critical sector without clear security compliance

📧Email Security

Email Security

No DKIM record found

No BIMI Record

No MTA-STS Policy

No TLS-RPT Record

No email authentication configured

🏆SSL/TLS Security

SSL/TLS Security

Unable to retrieve SSL certificate

OCSP Status

📊DNS Health

DNS Health

No Name Servers Found

DNSSEC Not Enabled

CAA Records Not Configured

DNS Records

DNSSEC Status

⚡Network Security

Network Security

Good Network Security Posture

🔧Technical Analysis

Technical Analysis

Additional Findings