Skip to main content

Security Directory

Explore comprehensive security analyses from websites around the world. Filter by industry, location, risk level, and more.

Live Guard activity

Security teams are checking their sites with Guard right now

Run your domain before the queue fills up

151329
Websites
130
Industries
113
Countries
52
Avg Score
Page 648 of 1034|Showing 32351-32400 of 51672
discord.gift favicon

Discord

discord.gift

73
TechnologyN/alargeMEDIUM

Discord is a leading technology company specializing in group chat and communication services primarily targeted at gamers and online communities. The platform offers voice, video, and text chat capabilities, along with community-building tools and customization features. It operates a freemium business model with paid Nitro subscriptions enhancing user experience. The website is professionally designed, mobile-optimized, and provides comprehensive resources on safety, privacy, and support, reflecting a mature digital presence. Technically, Discord's website leverages modern web technologies including Webflow CMS, Google Tag Manager for analytics, and Cloudflare for DNS and hosting, ensuring fast performance and robust infrastructure. Accessibility and SEO optimizations are well implemented, contributing to a positive user experience. From a security perspective, the site enforces HTTPS, employs multiple security headers, and integrates cookie consent mechanisms, demonstrating adherence to best practices. However, DNSSEC is not enabled, and no security.txt or explicit incident response contacts are published, representing areas for improvement. Overall, Discord's website exhibits a high level of professionalism, security, and compliance, with no critical vulnerabilities detected. Strategic recommendations include enabling DNSSEC, publishing a security.txt file, and providing explicit incident response contact information to further enhance trust and security posture.

90
68
2
95
57
85
100
groupchatgamingcommunityvoicechatvideochat+3 more
WebflowGoogle Tag ManagerYouTube Widget APIOneTrust Consent Management+1
2025-07-25T01:25:00.187Z
voodoo.io favicon

cadet-creations

voodoo.io

59
TechnologyFrancelargeMEDIUM

Voodoo.io is a well-established mobile game publisher and app developer headquartered in France, operating under the organization name 'cadet-creations'. The company focuses on entertaining a broad audience with iconic apps and games, positioning itself as a significant player in the mobile gaming industry. The website reflects a professional and modern design, leveraging technologies such as Framer for content management and Google Analytics and LinkedIn Insight for user tracking and marketing analytics. Hosting is provided via Amazon AWS infrastructure, ensuring reliable performance and availability. From a security perspective, the website employs HTTPS, ensuring encrypted communications, but lacks advanced security headers and DNSSEC, which could enhance its security posture. There are no published privacy or cookie policies, nor incident response or security policies, indicating gaps in compliance with privacy regulations such as GDPR. No contact information or vulnerability disclosure mechanisms are publicly available, which could impact user trust and regulatory compliance. Overall, the website is functional, professional, and trustworthy from a business credibility standpoint, supported by consistent WHOIS data and a long domain age. However, improvements in privacy compliance, security best practices, and transparency around data protection and incident response are recommended to strengthen the security posture and regulatory adherence.

40
83
2
55
52
65
100
mobilegamesappdevelopmententertainmenttechnologygaming
Google Tag ManagerGoogle AnalyticsLinkedIn InsightFramer
2025-07-25T01:24:35.029Z
greenpeace.fr favicon

Greenpeace France

greenpeace.fr

50
Non-profitFrancelargeMEDIUM

Greenpeace France is a prominent international non-profit environmental organization dedicated to advocacy, public awareness, and activism on issues such as climate change, nuclear disarmament, deforestation, and ocean protection. The organization operates through a large network of supporters and local volunteer groups, funded primarily by donations. The website reflects a mature digital presence with strong branding, comprehensive content, and clear calls to action for donations and activism. Technically, the site is built on WordPress with modern plugins and tracking tools including Google Analytics, Matomo, and Google Tag Manager. It is well optimized for mobile devices and SEO, with fast loading times and accessibility considerations. The site employs HTTPS and cookie consent mechanisms, demonstrating good privacy compliance. Security posture is solid with HTTPS and no visible vulnerabilities, though explicit security headers and incident response information are absent. The WHOIS data is unavailable, which slightly reduces transparency but does not detract from the site's legitimacy given the organization's global reputation and consistent branding. Overall, Greenpeace France's website is a secure, professional, and trustworthy platform supporting its mission to engage the public in environmental causes.

20
10
17
67
72
90
40
environmentnon-profitactivismenvironmentalcampaignsdonation+1 more
WordPressYoast SEO pluginGoogle Tag ManagerGoogle Analytics+3

Partner Domains:

don.greenpeace.fr
service
emploi.greenpeace.fr
service
2025-07-25T00:22:48.271Z
eurobesity.org favicon

European Coalition for People living with Obesity

eurobesity.org

68
HealthcareUnited KingdomsmallMEDIUM

The European Coalition for People living with Obesity (ECPO) operates a professional and well-structured website focused on advocacy and support for people living with obesity across Europe. The organization appears to be a small non-profit coalition founded in 2018, with a clear healthcare sector focus. The website uses WordPress with the Divi theme and integrates common web technologies such as Google Fonts, Google Tag Manager, and MonsterInsights for analytics. Hosting and domain registration are consistent with the organization's European focus, registered in the UK via Cloudflare. From a technical perspective, the website demonstrates good mobile optimization, accessibility, and SEO practices, though performance is moderate. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced DNS security (DNSSEC) and security headers. Privacy compliance is weak due to the absence of privacy and cookie policies or consent mechanisms. No contact emails or phone numbers were found in the provided content, which limits direct communication channels. Overall, the website is safe and appropriate for a general audience with no adult or questionable content detected. The security posture is moderate but could be improved with better privacy disclosures and security headers. The domain registration is legitimate and consistent with the business claims, supporting trustworthiness. Strategic recommendations include implementing privacy and cookie policies, adding security headers, and publishing incident response and vulnerability disclosure information to enhance compliance and trust.

85
53
17
70
75
70
100
healthcareobesityadvocacynon-profiteuropeancoalition+2 more
JavaScriptGoogle FontsGoogle Tag ManagerMonsterInsights+2
2025-07-25T00:21:27.313Z
investorsinpeople.com favicon

Investors in People

investorsinpeople.com

66
OtherUnited KingdomlargeMEDIUM

Investors in People is a well-established community interest company focused on workplace accreditations, employee engagement, and wellbeing. The organization offers internationally recognized accreditation services that help businesses improve people management and workplace culture. With a global reach spanning over 101 countries and impacting more than 12 million people, Investors in People holds a strong market position as a leader in its sector. The website reflects a professional and trustworthy brand with comprehensive content, clear navigation, and a strong community focus. Technically, the website is built on WordPress using Elementor and several advanced plugins, including Yoast SEO and WP Rocket for performance optimization. It integrates multiple marketing and analytics tools such as HubSpot, Google Analytics, VWO, and LinkedIn Insight Tag, indicating a mature digital marketing infrastructure. The site is mobile-optimized, fast-loading, and SEO-friendly, with good accessibility features. From a security perspective, the website enforces HTTPS and includes several important security headers, contributing to a strong security posture. However, there is no publicly available security policy or incident response information, and no vulnerability disclosure or security.txt file was found. The absence of WHOIS data for the domain is a notable concern, potentially indicating privacy protection or data blocking by the registrar, which slightly impacts trustworthiness. Overall, the website is professional, secure, and compliant with privacy regulations, making it a reliable resource for organizations seeking workplace accreditation. Strategic recommendations include publishing a security policy, incident response contacts, and vulnerability disclosure information to enhance transparency and trust.

15
100
17
65
82
65
100
workplaceaccreditationemployeewellbeingpeoplemanagementinvestorsinpeopleaccreditation+4 more
WordPressElementorJet EngineYoast SEO+5
2025-07-25T00:21:22.207Z
hivello.com favicon

Hivello

hivello.com

66
TechnologyN/asmallMEDIUM

Hivello operates as a decentralized physical infrastructure network (DePIN) aggregator, enabling users to monetize idle computing resources by connecting to multiple Web3 protocols through a user-friendly desktop application. The platform targets general users, including those without blockchain experience, offering passive income opportunities via mining and node management. Hivello's market position is that of an emerging player in the DePIN ecosystem, with integrations to ten DePIN networks and a proprietary utility token, $HVLO, which incentivizes participation and staking. Technically, the website is built on a modern stack including Next.js and Material UI, hosted likely on Linode with assets served from AWS S3. The site is performant, mobile-optimized, and accessible, with comprehensive SEO and metadata. Security posture is strong with HTTPS enforced and multiple security headers present. However, privacy compliance could be improved by implementing a cookie consent mechanism and publishing a dedicated security policy. The absence of WHOIS data for the domain www.hivello.com is a significant concern, as it raises questions about domain registration legitimacy. Despite this, the website content is professional and detailed, with active social media channels and extensive documentation, which supports business credibility. No direct company contact emails or phone numbers were found, which slightly reduces trust. Overall, Hivello presents a promising technology platform with strong technical and security foundations but should address domain registration transparency and privacy compliance to enhance trust and regulatory adherence.

50
53
2
85
75
85
100
depinweb3passiveincomecryptominingdecentralizednetworks+2 more
ReactNext.jsMaterial UIAWS S3 (asset hosting)+2

Partner Domains:

checkout.banxa.com
partner
2025-07-25T00:20:16.223Z
fintechweek.hk favicon

Finoverse

fintechweek.hk

64
FinanceHong KonglargeMEDIUM

Hong Kong FinTech Week x StartmeupHK Festival 2025 is a major annual fintech and technology conference held in Hong Kong, organized by Finoverse in partnership with government bodies and financial regulators. It serves as a flagship event in Asia, attracting tens of thousands of executives, investors, founders, and industry leaders to discuss innovations in fintech, AI, blockchain, and related sectors. The event offers extensive programming including speaker sessions, exhibitions, startup acceleration programs, and global roadshows, positioning itself as a key platform for networking and business growth in the fintech ecosystem. Technically, the website is built on Webflow CMS and hosted on its CDN, leveraging modern web technologies such as Google Tag Manager, HubSpot analytics and forms, and multiple social media tracking pixels. The site is well-optimized for performance, mobile responsiveness, and SEO, with rich multimedia content and structured data enhancing discoverability. However, explicit privacy and cookie policies are not clearly presented, which is a compliance gap. From a security perspective, the site uses HTTPS with strong SSL configuration and implements standard security headers for cache control. It employs Google reCAPTCHA on forms to mitigate spam and uses multiple tracking and analytics scripts. No critical vulnerabilities or exposed sensitive data were detected in the HTML content. The WHOIS data is consistent with the business claims, showing a legitimate registration aligned with the event's history. Overall, the website demonstrates a mature digital presence with strong business credibility and technical implementation. To enhance trust and compliance, it should publish clear privacy, cookie, and security policies, and provide explicit contact information for security incidents. These improvements will strengthen its privacy compliance and security posture, supporting its position as a leading fintech event in Asia.

60
83
17
40
52
75
100
fintechconferencehongkongstartuptechnology+3 more
Google Tag ManagerGoogle AnalyticsHubSpot Analytics and FormsWebflow CMS and hosting+6

Partner Domains:

www.finoverse.com
partner
www.fstb.gov.hk
partner

+3 more partners

2025-07-25T00:19:30.491Z
veltins-shop.de favicon

Brauerei C. & A. VELTINS GmbH & Co. KG

veltins-shop.de

64
RetailGermanymediumMEDIUM

The website www.veltins-shop.de serves as the official online retail platform for VELTINS branded merchandise, including glasses, clothing, and bar accessories. It targets consumers and fans of the VELTINS beer brand, offering a curated selection of products and special editions. The site is well-branded and consistent with the parent company Brauerei C. & A. VELTINS GmbH & Co. KG, operating primarily in the retail sector within Germany. Technically, the website leverages modern frameworks such as Vue.js and Vuetify, with hosting likely provided by DigitalOcean. It integrates Google Tag Manager and Google Analytics for marketing and analytics purposes. The site demonstrates good mobile optimization, SEO practices, and a moderate performance profile. From a security perspective, the site enforces HTTPS and includes standard security headers, reflecting a good security posture. However, it lacks explicit cookie consent mechanisms and does not publicly disclose a security policy or incident response procedures. No vulnerabilities or exposed sensitive data were detected in the provided content. Overall, the website presents a professional and trustworthy e-commerce platform for VELTINS merchandise. Strategic improvements include implementing cookie consent, publishing security and incident response information, and providing direct company contact details to enhance transparency and compliance.

15
60
17
70
95
70
100
e-commerceretailalcoholbrandmerchandisegerman
Vue.jsVuetifyGoogle Tag ManagerGoogle Analytics

Partner Domains:

www.veltins.de
partner
2025-07-25T00:17:12.300Z
velasblocks.com favicon

OpenScan.ai

velasblocks.com

51
TechnologyN/asmallMEDIUM

OpenScan.ai operates as a specialized blockchain explorer and analytics platform primarily serving the Velas (VLX) blockchain ecosystem. The platform offers comprehensive blockchain data including transactions, blocks, tokens, NFTs, and developer tools such as APIs and contract verification. Its target audience includes blockchain developers, crypto traders, and enthusiasts seeking detailed insights into Velas blockchain activities. The business is relatively young, founded in 2022, and positions itself as a niche service provider within the blockchain technology sector. Technically, the website employs modern frontend technologies including React, Bootstrap, and Highcharts for data visualization. It is hosted on Cloudflare infrastructure, ensuring good performance and security at the network level. The site is mobile-optimized and provides a good user experience with clear navigation and relevant content. However, some accessibility and SEO optimizations are basic and could be improved. From a security perspective, the site benefits from HTTPS and domain transfer protection but lacks DNSSEC and important security headers, which are recommended to enhance security posture. There is no visible privacy policy, cookie consent mechanism, or incident response information, indicating gaps in compliance and transparency. No contact emails or phone numbers are provided, which may affect user trust and support accessibility. Overall, the website is functional, professional, and relevant to its niche but would benefit from enhanced privacy compliance, security best practices, and clearer contact and policy disclosures to improve trust and regulatory adherence.

15
35
2
40
65
75
100
blockchainexplorervelasvlxcrypto+4 more
ReactBootstrapFont AwesomeHighcharts+1
2025-07-24T23:06:59.283Z
U

U.S. Bank Europe DAC trading as Elavon Merchant Services

elavon.eu

76
FinanceIrelandenterpriseLOW

Elavon Europe, operated by U.S. Bank Europe DAC, is a prominent payment processing and merchant services provider targeting businesses across Europe. The company is regulated by the Central Bank of Ireland and other UK financial authorities, underscoring its legitimacy and compliance with financial regulations. The website serves as a regional portal offering multi-language support and links to country-specific domains, facilitating localized payment solutions. The business model focuses on enabling merchants to accept payments efficiently, with a strong emphasis on regulatory compliance and customer service. Technically, the website is built on Adobe Experience Manager, leveraging modern JavaScript libraries such as jQuery, Video.js, and Slick Carousel for enhanced user experience. Google Tag Manager is used for analytics and marketing purposes, with a clear cookie consent mechanism in place, reflecting good privacy practices. The site is mobile-optimized and demonstrates good SEO and accessibility basics, although some improvements in accessibility could be made. From a security perspective, the site enforces HTTPS and implements cookie consent but lacks explicit security headers in the HTML content. No vulnerabilities or exposed sensitive data were detected. The absence of a security.txt or explicit incident response contact is a minor gap. The domain WHOIS data is privacy protected under EURid, which is typical for European domains and justified given the financial nature of the business. Overall, Elavon Europe presents a professional, secure, and compliant online presence suitable for its enterprise-scale financial services. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure information, and improving accessibility features to further strengthen trust and compliance.

45
80
47
70
90
90
100
financepaymentprocessingmerchantservicesprivacycookieconsent+2 more
jQueryVideo.jsSlick CarouselGoogle Tag Manager

Partner Domains:

elavon.co.uk
partner
elavon.com
partner

+1 more partners

2025-07-24T23:05:43.446Z
U

US Bankcard Services (USBS)

usbsi.com

72
FinanceUnited StatesmediumMEDIUM

US Bankcard Services (USBS) is a payment processing company offering credit and debit card processing, POS terminals, and multi-lingual customer support primarily targeting business owners and merchants across various industries. The company positions itself as a leading nationwide payment processor since 1996 and operates under the parent company Elavon, Inc. The website provides comprehensive payment solutions including in-person, online, mobile, and mail or telephone payments, supported by 24/7 customer service. Technically, the website is built on Adobe Experience Manager (AEM) CMS and employs modern web technologies such as Google Tag Manager, reCAPTCHA, and Tealium for analytics and marketing. The site is mobile-optimized, accessible, and SEO-friendly with structured data and Open Graph metadata enhancing search visibility. Security measures include HTTPS enforcement and use of invisible reCAPTCHA on forms, though HTTP security headers are not explicitly detected. The security posture is solid with no visible vulnerabilities or exposed sensitive data. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanisms. However, the absence of WHOIS domain registration data raises some concerns about domain legitimacy, although the professional branding and association with Elavon mitigate this risk. Overall, the website demonstrates a mature digital presence with strong business credibility and security practices, but domain registration inconsistencies suggest a need for further verification to fully trust the domain's authenticity.

45
68
47
70
77
90
100
paymentprocessingmerchantservicesposterminalscreditcardprocessingonlinepayments+3 more
JavaScriptGoogle reCAPTCHAGoogle Tag ManagerInvoca+2

Partner Domains:

elavon.com
parent
2025-07-24T23:05:18.339Z
E

Elavon, Inc.

paymentstart.com

62
FinanceUnited StateslargeMEDIUM

Elavon, Inc. operates the website learn.paymentstart.com as a subdomain focused on providing payment solutions and support for merchants in the United States. The site offers quick start guides for various payment devices including Ingenico, Poynt, and Newland, and promotes the Converge Payments Platform. The business targets merchants and businesses requiring payment processing hardware and software solutions, positioning itself as a trusted provider in the finance and payment technology sector. The website content is professionally presented with consistent branding and clear calls to action for customer care and activation assistance. From a technical perspective, the website employs modern analytics and marketing technologies such as Google Tag Manager, Google Analytics, Demandbase, and Pardot. The site is mobile optimized with a responsive design and loads a variety of external scripts to support tracking and marketing efforts. However, there is no evidence of a CMS or hosting provider disclosed. Performance is moderate, and SEO and accessibility features are basic but functional. Security posture is moderate; HTTPS is implied by script sources but no explicit security headers are detected in the provided data. No forms or input fields are present on the page, reducing attack surface. Privacy policy and accessibility statements are linked, but cookie consent mechanisms and terms of service are absent. No vulnerability disclosure or incident response policies are published. WHOIS data for the subdomain is unavailable as expected, but this reduces transparency slightly. Overall, the site demonstrates a reasonable security baseline but could improve in policy transparency and security header implementation. The overall risk assessment is moderate with no critical vulnerabilities detected. Strategic recommendations include implementing security headers, publishing comprehensive security and incident response policies, adding cookie consent for GDPR compliance, and enhancing accessibility. These improvements would strengthen trust and compliance posture while supporting the company’s market position as a reliable payment solutions provider.

20
68
2
70
72
90
100
paymentfinanceelavonpaymentsolutionsmerchantservices+2 more
Google Tag ManagerGoogle AnalyticsDemandbasePardot+1

Partner Domains:

elavoncxm.my.salesforce.com
partner
support.mypaymentsinsider.com
partner
2025-07-24T23:05:03.270Z
E

Elavon Canada Company

costcopaymentprocessing.ca

74
FinanceCanadalargeMEDIUM

The website www.costcopaymentprocessing.ca represents Elavon Canada Company, a large payment processing service provider partnered with Costco Canada. The site offers a range of payment solutions including online, mobile, and in-person payments, with a focus on secure, fast, and reliable transaction processing. The business targets Canadian businesses seeking payment processing services and emphasizes customer satisfaction and operational efficiency. The website is professionally designed, mobile-optimized, and provides clear navigation and contact options including phone numbers and a contact form protected by Google reCAPTCHA. Privacy and cookie policies are present and indicate GDPR compliance. Technically, the site uses Adobe Experience Manager CMS and integrates multiple analytics and marketing tools such as Google Analytics, Google Tag Manager, Invoca, and Tealium. Security posture is strong with HTTPS enforced and secure form handling, though explicit security headers are not detected in the HTML source. WHOIS data is unavailable, suggesting privacy protection or a new domain registration, which slightly impacts trust but is common for this business type. Overall, the website is trustworthy, well-maintained, and aligned with industry standards for payment processing services.

45
68
47
70
100
80
100
paymentprocessingecommerceretailfinancecanada+2 more
Google Tag ManagerGoogle AnalyticsGoogle reCAPTCHA v2 InvisibleInvoca+4

Partner Domains:

www.costco.ca
partner
www.traitementdespaiementsdecostco.ca
partner
2025-07-24T23:04:58.236Z
creditreform.de favicon

Verband der Vereine Creditreform e.V.

creditreform.de

60
FinanceGermanylargeMEDIUM

Verband der Vereine Creditreform e.V. operates as Germany's leading provider of business information, creditworthiness assessments, debt collection, and marketing data services. The company targets businesses seeking to manage credit risk, optimize receivables, and improve sustainability practices through ESG evaluations. Their market position is strong, supported by recognized certifications such as CrefoZert and EcoZert, and a broad service portfolio including factoring and credit insurance. The website reflects a mature digital presence with a professional design and comprehensive content tailored to business clients. Technically, the website is built on TYPO3 CMS, leveraging modern JavaScript libraries and multiple analytics and marketing tools, including Usercentrics for consent management, Google Tag Manager, and LinkedIn Analytics. The site is mobile-optimized and accessible, with good SEO practices. Security posture is solid with HTTPS enforced and privacy compliance mechanisms in place, although explicit security policies and incident response contacts are not publicly available. Overall, the website and domain WHOIS data indicate a legitimate, well-established business with consistent branding and trustworthy digital infrastructure. The absence of blocking mechanisms or suspicious domains further supports its credibility. Strategic improvements could focus on enhancing transparency around security policies and incident response. The risk assessment is low, with no critical vulnerabilities or compliance gaps detected, making the site suitable for business interactions and data exchange.

70
28
2
55
72
70
100
financecreditreforminkassobonittsprfungesg+5 more
TYPO3 CMSjQuerySwiper.jsUsercentrics Consent Management+6

Partner Domains:

firmeneintrag.creditreform.de
service
meine.creditreform.de
service

+2 more partners

2025-07-24T22:02:56.906Z
aberdeeninvestments.com favicon

Aberdeen Group

aberdeeninvestments.com

69
FinanceFinlandlargeMEDIUM

Aberdeen Group is a global investment company and asset manager focused on helping investors achieve their financial goals. The website targets both individual and professional investors, offering investment funds and solutions. The company positions itself as a large, established player in the finance sector with a global footprint, particularly serving the Finnish market in this instance. The website content is professional, well-structured, and provides comprehensive information about services and corporate details. Technically, the website leverages modern frameworks such as Vue.js and integrates consent management tools like OneTrust, alongside Google Tag Manager for analytics. The site is mobile-optimized, accessible, and SEO-friendly, reflecting a mature digital infrastructure. Performance is moderate, with room for optimization. From a security perspective, the site enforces HTTPS, implements key security headers, and uses a cookie consent mechanism aligned with GDPR requirements. However, explicit security policies and incident response information are not publicly available, and no vulnerability disclosure or security.txt file is found, which are areas for improvement. Overall, the website presents a low risk with strong business credibility and privacy compliance. The main concern is the lack of WHOIS data, which reduces domain trustworthiness. Strategic recommendations include publishing detailed security policies, establishing a vulnerability disclosure program, and enhancing transparency around security certifications.

85
65
2
60
82
80
100
investmentassetmanagementfinanceprivacygdpr+1 more
Vue.jsGoogle Tag ManagerOneTrust Consent Management

Partner Domains:

www.aberdeenplc.com
partner
2025-07-24T22:01:56.549Z
liontrust.co.uk favicon

Liontrust Asset Management PLC

liontrust.co.uk

75
FinanceUnited KingdomlargeMEDIUM

Liontrust Asset Management PLC is a specialist investment management company based in the United Kingdom, focusing on fund management and investment services. The website presents a professional image with a clear business description targeting investors and financial professionals. The company positions itself as a distinct and specialist player in the financial services sector. Technically, the website employs modern analytics and marketing technologies such as Google Tag Manager, Cookiebot CMP for consent management, Microsoft Clarity, and Visual Website Optimizer, indicating a mature digital infrastructure. The site is served over HTTPS, ensuring secure communications, and includes a comprehensive cookie consent mechanism that complies with GDPR principles. However, explicit privacy policy and terms of service documents were not found in the provided content, which is a gap in privacy compliance. Security posture is generally good with no visible vulnerabilities or exposed sensitive data, but the absence of security headers and incident response information suggests room for improvement. The WHOIS data query failed due to querying the subdomain 'www.liontrust.co.uk' instead of the registered domain 'liontrust.co.uk', which explains the lack of registrar and registration details. Overall, the website is professional and trustworthy but would benefit from enhanced transparency in privacy and security policies.

65
95
2
98
90
70
100
investmentfundmanagementfinanceassetmanagementcookieconsent+2 more
Google Tag ManagerCookiebot CMPMicrosoft ClarityVisual Website Optimizer (VWO)+2
2025-07-24T22:01:41.500Z
mandg.com favicon

M&G plc

mandg.com

76
FinanceUnited KingdomenterpriseLOW

M&G plc is a well-established international leader in savings and investments, serving over five million customers globally. The company offers a broad range of financial services including savings products, investment management, and institutional client services. Their website reflects a mature business with a strong market position in the finance sector, targeting investors, intermediaries, and private clients. The presence of multiple regional and partner sites indicates a significant international footprint. Technically, the website is built on a modern stack including Sitecore CMS, jQuery, Bootstrap, and Google Tag Manager, hosted likely via Akamai CDN. The site demonstrates good performance, mobile optimization, and accessibility standards. SEO practices are well implemented with comprehensive meta tags and Open Graph data. From a security perspective, the site enforces HTTPS and includes cookie consent mechanisms with opt-in for performance cookies. However, some security headers are missing, and no public incident response or vulnerability disclosure information is found. The WHOIS data is unavailable or protected, which is common for large enterprises but reduces transparency. Overall, the security posture is solid but could be improved with additional headers and published security policies. The overall risk assessment is low, with the website presenting a professional, trustworthy front for a major financial institution. Strategic recommendations include enhancing security headers, publishing vulnerability disclosure and incident response contacts, and improving transparency around registrant data where possible.

90
73
14
97
65
85
100
financeinvestmentsavingscorporateinvestors+1 more
jQueryGoogle Tag ManagerBootstrapSlick Carousel+1

Partner Domains:

www.prudential-international.com
partner
www.infracapital.co.uk
partner

+1 more partners

2025-07-24T22:01:36.491Z