High-risk security reports

S

sotreq.com.br

sotreq.com.br

40

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 27 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment completed with an overall score of 0/100 (unknown risk). 3 critical issues require immediate attention. Total of 27 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

U

Universal Music Group, the world's leading music company | Home Page - UMG

umusic.com

40

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

M

Marinomed Biotech AG :: Marinomed

marinomed.com

40

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

Hotel de charme en normandie honfleur deauville trouville SITE OFFICIEL - HOTEL VUE SUR MER Villerville bord de mer - Bellevue Hotel

bellevue-hotel.fr

38

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website aerialyogaflow.com is currently inaccessible, returning an HTTP 403 Forbidden error with minimal HTML content. This indicates that the site is either restricted or blocked from public access. There is no visible business information, metadata, or structured data to analyze. The domain is registered but lacks DNS records and a valid SSL certificate, resulting in no HTTPS support. This severely limits the ability to assess the company's business model, services, or market position. Technically, the site shows poor infrastructure and security posture with no modern technologies or security best practices implemented. Overall, the site presents a high risk due to lack of accessibility, missing security controls, and absence of compliance documentation.

F

Frauenthal Karriere – In Österreich ist die Frauenthal Handel Gruppe die Nummer 1 im Großhandel für Sanitär, Heizung und Installationstechnik. Werde ein Teil von uns!

frauenthal-karriere.at

40

Security assessment completed with an overall score of 0/100 (unknown risk). 2 critical issues require immediate attention. Total of 29 security findings identified across all modules.

F

Frauenthal Handel Gruppe – Die Frauenthal Handel Gruppe ist der Partner für die Sanitär, Heizung und Installationstechnik Großhandelsmarken SHT, ÖAG und Kontinentale sowie für den Online-Elektro

frauenthal-handel.at

40

Security assessment completed with an overall score of 0/100 (unknown risk). 2 critical issues require immediate attention. Total of 28 security findings identified across all modules.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

ISZ Markt

isz-markt.at

38

ISZ Markt is a leading Austrian wholesale distributor specializing in installer supplies, heating, electrical, and home technology products. With 70 locations across Austria and a strong parent company, Frauenthal Handel Gruppe AG, ISZ Markt serves professional installers and contractors with a broad product range and fast delivery services. The website is professionally designed using WordPress and Elementor, featuring comprehensive content, structured data, and good SEO practices. However, the website suffers from a critical security issue due to an invalid SSL certificate and lack of enabled TLS protocols, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and detailed privacy policy. Contact is primarily via a contact form, with no direct emails or phone numbers publicly listed. Overall, the site is credible and trustworthy but requires urgent SSL/TLS remediation to improve security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

S

SHT WEBSHOP

sht.at

34

The website sht.at operates as an e-commerce webshop branded as SHT, targeting German-speaking customers. It offers online product sales but lacks detailed business information, contact details, or policies on the homepage. The technical infrastructure is based on modern web technologies such as Next.js and React, with Craft CMS APIs referenced, indicating a decoupled CMS backend. However, performance metrics are missing or incomplete, and mobile optimization and accessibility are basic. Security posture is poor due to the absence of a valid SSL certificate, no HTTPS support, and missing security headers, exposing the site to significant risks. Privacy compliance is lacking, with no privacy or cookie policies detected, and no GDPR indicators present. The domain's DNS configuration is suspiciously empty, raising concerns about legitimacy and operational maturity. Overall, the site scores low on trustworthiness and security, requiring urgent improvements in SSL deployment, policy transparency, and DNS configuration.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

S

smartpoint: Ihr Partner für digitale Unternehmenslösungen

smartpoint.at

32

Security assessment completed with an overall score of 0/100 (unknown risk). 5 critical issues require immediate attention. Total of 27 security findings identified across all modules.

H

Herbst Kinsky Rechtsanwälte

herbstkinsky.at

35

Herbst Kinsky Rechtsanwälte is a medium-sized Austrian law firm specializing in economic, corporate, and financial law with offices in Vienna and Linz. The website presents a professional image with clear business descriptions, targeting businesses and professionals seeking legal advisory services in Austria. The firm offers a broad range of legal services including M&A, venture capital, banking and capital markets law, and labor law. Technically, the website is built on WordPress with a custom theme and SEO framework, but suffers from a critical lack of HTTPS due to an invalid SSL certificate, which severely impacts security posture. The site lacks modern TLS protocols, security headers, and cookie consent mechanisms, which are important for compliance and user trust. Overall, the website is functional and well-structured but requires urgent security improvements to protect user data and enhance trust.

Royal TenCate is a large multinational manufacturing group specializing in technical textiles and composite materials. The company operates through five independent subsidiaries, each focusing on niche markets such as protective fabrics, sports surfaces, outdoor textiles, survivability solutions, and advanced composites. The website serves as a portal directing visitors to these subsidiaries' individual sites. Technically, the website is built on the HubSpot CMS platform and hosted behind Cloudflare, but it lacks a valid SSL certificate and proper HTTPS configuration, which is a critical security concern. The site has basic SEO and accessibility features but lacks privacy and cookie policies, contact information, and security best practices such as vulnerability disclosure mechanisms. Overall, the security posture is weak due to missing HTTPS and modern TLS protocols, which significantly impacts trust and compliance. Strategic improvements in SSL deployment, privacy compliance, and security policies are recommended to enhance the website's credibility and user trust.

The website for restaurantlulu.com is minimal and currently only serves as a redirect to a /lander page with no additional content or metadata. The business appears to be in the hospitality sector, likely a restaurant, but no detailed information about services, company background, or contact details is available. The technical infrastructure is basic, with DNS hosted by Namefind and no valid SSL certificate, resulting in no HTTPS support. This severely impacts the security posture and trustworthiness of the site. Security best practices are not implemented, with no security headers, no HSTS, and no vulnerability disclosures. Overall, the site lacks essential privacy and compliance policies, making it unsuitable for professional or customer-facing use in its current state.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website skytoxicology.com currently presents no accessible content beyond a simple redirect to a /lander path, with no metadata, forms, or business information available. The domain is registered but lacks DNS records and a valid SSL certificate, indicating a very low level of digital maturity and technical infrastructure. Security posture is poor due to the absence of HTTPS, security headers, and other best practices. Overall, the site appears inactive or under construction, resulting in a high risk profile and minimal trustworthiness. Strategic recommendations include establishing proper DNS records, implementing SSL/TLS, and developing meaningful website content to improve business credibility and security.

M

Mark Metallwarenfabrik GmbH

mark.at

27

Mark Metallwarenfabrik GmbH is a medium-sized manufacturing company based in Austria specializing in metal products. The company maintains a professional website showcasing its global footprint, technologies, sustainability efforts, and career opportunities. The site targets industry professionals, potential employees, and partners. Technically, the website is built on WordPress with modern plugins such as Elementor and Jet Engine, but lacks a valid SSL certificate, which is a critical security shortfall. Privacy and cookie policies are well implemented with consent mechanisms, reflecting good GDPR compliance. Social media presence is active, enhancing brand visibility. However, the absence of HTTPS and proper TLS configuration significantly impacts the security posture and overall trustworthiness of the site.

The website comvexx.com is currently inaccessible beyond a Cloudflare Web Application Firewall (WAF) challenge page that requires JavaScript and cookies to proceed. This effectively blocks access to any substantive content, business information, or user interaction elements. The domain is properly configured with Cloudflare DNS and Microsoft Outlook for email services, but the absence of a valid SSL certificate and HTTPS support is a critical security deficiency. The site lacks visible privacy, cookie, or terms of service policies, and no contact or business details are presented on the landing page. Overall, the digital maturity of the site is low due to the lack of accessible content and security best practices implementation.

T

Tiffany & Co.

tiffany.com

36

Tiffany & Co. is a globally recognized luxury jewelry brand with a strong market position under the LVMH parent company. The website serves as a comprehensive e-commerce platform offering a wide range of fine jewelry, gifts, and accessories, supported by robust customer service including concierge and appointment booking. Technically, the site leverages Adobe Experience Manager CMS, Akamai CDN, and modern JavaScript frameworks, delivering a fast and mobile-optimized user experience. However, the security posture is critically weakened by the absence of a valid SSL certificate and lack of HTTPS/TLS support, exposing users to potential risks. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but urgently needs to remediate its SSL/TLS configuration to ensure secure communications.

K

Kommunikationskunst

kommunikationskunst.at

31

Kommunikationskunst is a small Austrian marketing and communication agency led by Robert Seeger, with over 15 years of experience in innovative marketing solutions. The company offers a range of services including employer branding, keynotes, workshops, social media management, creative campaigns, and seminars. The website reflects a professional and consistent brand image targeting businesses seeking bold and effective communication strategies. Technically, the site is built on WordPress using OptimizePress and Yoast SEO, but suffers from a critical lack of HTTPS, impacting its security posture significantly. While the site includes basic privacy and cookie policies with GDPR consent mechanisms, it lacks explicit security and incident response policies. Overall, the business appears legitimate and established, but the absence of SSL/TLS is a major security concern that should be addressed promptly.

B

ByteSource Technology Consulting GmbH

bytesource.net

40

ByteSource Technology Consulting GmbH is a medium-sized Austrian technology consulting firm specializing in cloud migration, Atlassian ecosystem services, DevOps, agile software development, and AI-driven business transformation solutions. Positioned as a leading Atlassian Platinum Solution Partner and AWS Advanced Tier Services Partner in Austria, ByteSource serves enterprises and medium to large businesses with a comprehensive portfolio of technology consulting and software development services. The company emphasizes innovation, security, and operational excellence, supported by certifications such as ISO 27001 and TISAX AL3. Technically, the website is built on modern frameworks including Next.js and is hosted on Amazon AWS infrastructure leveraging S3 and CloudFront CDN. The site integrates various marketing and analytics tools such as Google Tag Manager, Facebook Pixel, Zoho SalesIQ, and Leadforensics, reflecting a mature digital marketing strategy. However, performance metrics indicate slow loading times, and while mobile optimization and accessibility are excellent, there is room for improvement in performance. From a security perspective, the site lacks a valid SSL certificate and does not support TLS protocols, which is a critical vulnerability impacting the overall security posture. Security headers are partially implemented, but the absence of HTTPS and modern TLS protocols significantly reduces the security score. Privacy compliance is strong, with comprehensive privacy and cookie policies and consent mechanisms in place, aligning with GDPR requirements. Overall, ByteSource presents a professional and trustworthy online presence with strong business credibility and technical maturity, but the lack of HTTPS and proper SSL/TLS configuration poses a significant risk. Strategic recommendations include immediate remediation of SSL/TLS issues, enhancement of security headers, and performance optimization to improve user experience and security posture.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 9 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

U

Uponor Suomi Oy

uponor.com

38

Uponor Suomi Oy is a leading international company specializing in building and infrastructure water transport solutions. The company offers a wide range of products and services including building technology, infrastructure products, project services, and customer support. It operates under the parent company Georg Fischer (GF) Group and targets professionals in construction, infrastructure planning, and homeowners. The website is well-designed, content-rich, and provides comprehensive information about products, services, and corporate policies. Technically, the site uses modern frameworks like React and Kentico CMS, with integrations for analytics and marketing tools. However, a critical security issue is the absence of a valid SSL/TLS certificate, exposing users to risks. Security headers are well implemented, but the lack of HTTPS significantly lowers the security posture. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site is professional and trustworthy but urgently needs to address its SSL/TLS configuration to ensure secure user interactions.

The Stadtgemeinde Mödling website serves as the official digital portal for the city of Mödling, Austria, providing residents and visitors with comprehensive municipal information, news, events, and public services. The site targets local citizens and stakeholders, offering easy access to administrative contacts, service forms, and cultural activities. The business model is that of a government entity focused on transparency and community engagement. Technically, the website employs a custom RIS CMS platform with common web technologies such as jQuery, Bootstrap, and FontAwesome, and integrates Matomo for analytics. However, the absence of HTTPS is a critical security flaw that undermines user trust and data protection. Security headers are partially implemented, but the lack of SSL/TLS and modern protocols significantly lowers the security posture. Privacy compliance is moderate, with a clear privacy policy but no cookie consent mechanism. Overall, the site is professional and trustworthy but requires urgent security upgrades.

I

Interenergo d.o.o.

interenergo.si

35

Interenergo d.o.o. is a medium-sized energy company based in Slovenia, operating as part of the Austrian Kelag group since 2009. The company focuses on renewable energy investments, energy efficiency solutions, power purchase agreements, and energy trading across Southeast Europe. Their website is professionally designed with clear navigation and bilingual support, targeting businesses and investors interested in green energy solutions. Technically, the site uses modern JavaScript libraries and cookie consent mechanisms but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS significantly lowers the security posture. Contact information and privacy policies are clearly provided, supporting GDPR compliance. Overall, the website is functional and trustworthy but requires urgent improvements in SSL/TLS implementation to enhance security and user trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website at compuware.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) challenge page that blocks access to actual content. No meaningful business information, metadata, or contact details are available on the landing page. The site lacks a valid SSL certificate and does not support any TLS protocols, resulting in a poor security posture. The absence of privacy, cookie, or terms of service policies further reduces compliance and trustworthiness. Overall, the site appears either misconfigured or inactive, limiting any substantive analysis of its business or technical maturity.

L

Linz Textil Holding AG

linz-textil.at

27

Linz Textil Holding AG is a leading European manufacturer specializing in yarns, fabrics, and terry products, serving the textile industry with a strong presence across multiple European countries through its subsidiaries. The company’s website reflects a professional and consistent brand image, targeting textile industry customers and partners. The business model focuses on manufacturing and distribution with a clear emphasis on innovation, tradition, and sustainability. Technically, the website is built on TYPO3 CMS with standard web technologies including jQuery, and it incorporates modern consent management and analytics tools such as Usercentrics and Google Analytics 4. However, the website suffers from a critical security issue: the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture and trustworthiness. Despite this, the site includes comprehensive legal and privacy documentation, indicating good privacy compliance. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

B

Bankhaus Spängler

spaengler.at

40

Bankhaus Spängler is Austria's oldest private bank, providing private banking, family management, financing, and real estate services across multiple regional offices. The website is professionally designed, content-rich, and targets private banking clients and institutional investors primarily in Austria. Technically, the site uses TYPO3 CMS and integrates Cookiebot for cookie consent, but critically lacks HTTPS/SSL encryption, exposing users to security risks. Security headers are partially implemented, but the absence of SSL significantly lowers the security posture. Privacy compliance is well addressed with clear privacy and cookie policies. Overall, the business credibility is strong with clear contact information and trust indicators. The domain registration data aligns well with the business claims, confirming legitimacy.

L

Logwin AG

logwin-logistics.com

40

Logwin AG operates an international logistics and transportation services website offering a broad range of services including sea freight, air freight, warehousing, and transport management. The company targets businesses requiring reliable logistics solutions and positions itself as a professional and dedicated provider with a worldwide network. The website is built on TYPO3 CMS and uses modern frontend technologies such as jQuery and Fancybox, providing a good user experience with clear navigation and professional design. However, the technical infrastructure shows weaknesses, notably the absence of a valid SSL certificate and lack of TLS protocol support, which significantly impacts the security posture. Security headers are partially implemented, and privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Contact information is limited to a contact form, with no explicit emails or phone numbers found. Overall, the website is functional and professional but requires urgent improvements in SSL/TLS configuration to enhance security and trust.

J

Jung Eco Building Solutions GmbH

jung-ingenieure.com

37

Jung Eco Building Solutions GmbH is a specialized engineering consultancy focused on climate engineering, green building design, and energy consulting primarily serving clients such as builders, planners, and architects in Germany. The company offers tailored energy and climate concepts, building envelope optimization, and certification services for sustainable buildings. Their market position is that of a niche player in the energy and sustainability sector with a small company size and a professional online presence. Technically, the website is built on WordPress with common libraries like Bootstrap and jQuery, but lacks HTTPS and modern security configurations, which is a significant risk. The absence of cookie consent mechanisms and incident response information indicates partial GDPR compliance. Overall, the website is content-rich and professionally designed but requires urgent security improvements to protect user data and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

H

HOM Furniture

homfurniture.com

36

HOM Furniture is a large regional furniture retailer primarily serving the upper Midwestern United States, including Minnesota and surrounding states. The company offers a broad range of furniture, home décor, and design services both online and in physical stores. Their digital presence includes advanced features such as augmented reality visualization and room planning tools, indicating a moderate level of digital maturity. However, the website lacks a valid SSL certificate, which is a critical security shortfall that undermines user trust and data protection. While privacy policies are present, cookie consent mechanisms are missing despite the use of tracking and analytics tools. The site uses modern web technologies including MeteorJS and React, but performance data is lacking, suggesting potential optimization opportunities. Overall, the business appears legitimate and well-established, but security improvements are urgently needed to protect customer data and enhance trust.

REFLECTIONS Research & Consulting is a small consulting firm based in Austria, led by Franz Kühmayer, offering expertise, consulting services, visionary insights, references, and keynote speaking. The website is minimalistic with basic content and navigation but lacks critical security and privacy features. Technically, the site runs on Apache with simple HTML and CSS, but it lacks HTTPS and modern security headers, exposing visitors to potential risks. No privacy or cookie policies are present, and no contact information is provided, which impacts trust and compliance. Overall, the website's security posture is weak, and the digital maturity is low, requiring urgent improvements to secure communications and comply with privacy regulations.

The domain aisha.fi currently hosts a parked domain placeholder page provided by Hostinger, indicating no active business or website content. The page promotes Hostinger's hosting services and provides guidance for domain owners to set up hosting and manage nameservers. The technical infrastructure relies on Bootstrap, jQuery, Font Awesome, and Google Tag Manager, hosted on Hostinger with DNS managed by Cloudflare. However, the site lacks a valid SSL certificate and does not support HTTPS, which severely impacts security posture. No privacy, cookie, or terms of service policies are present, and no contact information or business details are provided, limiting trust and credibility. Overall, the site is non-operational as a business website and serves only as a parked domain.

The website rublys.com currently serves only a minimal placeholder page indicating hosting on host22.ssl-gesichert.at with no meaningful content or business information. The technical infrastructure is basic, running on Apache with an outdated PHP 5.3.29 version and no SSL/TLS certificate, resulting in unencrypted HTTP traffic. DNS records show standard MX entries using Google and Zendesk mail services, but no DNSSEC or CAA records are configured. Security posture is weak due to lack of HTTPS, missing security headers, and no HSTS policy. There are no privacy or cookie policies, no contact information, and no visible business or compliance documentation. Overall, the site appears inactive or improperly configured for public use, presenting significant security and trust concerns.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

The website radarcs.com is currently inaccessible beyond a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information. The domain is registered but lacks DNS records and a valid SSL certificate, resulting in no HTTPS support. The website's technical infrastructure is minimal and does not support modern security protocols. Security headers are present but insufficient to compensate for the lack of SSL and accessible content. No privacy, cookie, or terms of service policies are found, and no contact information or business details are available. Overall, the website exhibits a very low level of digital maturity and trustworthiness, with critical security and accessibility issues.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

F

Flexprint (part of delfortgroup AG)

delfortflexibles.com

30

Flexprint is a medium-sized, family-owned manufacturing company specializing in flexible packaging solutions for food, non-food, and tobacco products primarily in Eastern Europe. The company is part of the larger delfortgroup AG and has over 14 years of experience with a strong market presence in 40 countries and 200 clients. The website is built on WordPress using the Salient theme and WPBakery page builder, with a moderate level of technical sophistication but lacks a valid SSL certificate, which is a critical security concern. The site implements a cookie consent mechanism compliant with GDPR and links to a comprehensive privacy policy hosted on the parent company's domain. However, there is no visible terms of service or incident response policy. Security posture is weak due to missing HTTPS and modern TLS protocols, no HSTS, and lack of security headers. Business credibility is supported by multiple certifications and positive customer testimonials. Strategic improvements in security infrastructure and transparency policies are recommended to enhance trust and compliance.

G

Generasitogel

qpsneuro.com

35

The website presents itself as an online slot gaming platform targeting Indonesian users with QRIS payment options and low minimum deposits. It is built on the Squarespace platform and hosted behind Cloudflare. However, the site lacks a valid SSL certificate, exposing users to security risks. There are no privacy or cookie policies, and contact information is minimal, limited to a single email address found in a script, which appears to be a user account email rather than official contact. The site content is promotional but basic, with limited trust indicators and no social media presence. Performance data is missing, and the site shows poor privacy compliance and security posture. Overall, the site appears functional but lacks critical security and compliance features, reducing its trustworthiness and professionalism.

The website metacure.com currently serves only a minimal HTML page that immediately redirects visitors to a /lander path, with no visible content, metadata, or business information. The domain is registered and resolves to IP addresses likely hosted on Amazon AWS, but lacks a valid SSL certificate and does not support HTTPS, exposing visitors to security risks. No privacy, cookie, or terms of service policies are present, and no contact or company information is available on the site. The technical infrastructure is minimal and lacks modern security and performance optimizations, resulting in a poor user experience and low trustworthiness. From a security perspective, the absence of HTTPS and security headers, combined with no DNSSEC or CAA records, indicates a weak security posture. The domain's DNS configuration is incomplete, with no valid MX records, which may affect email deliverability and trust. No analytics or tracking technologies are detected, suggesting minimal digital maturity. Overall, the site appears to be either under development, abandoned, or a placeholder with no active business presence. Given these findings, the overall risk level is high due to lack of encryption, absence of policies, and no verifiable business identity. Strategic recommendations include obtaining and configuring a valid SSL certificate, implementing security best practices such as HSTS and security headers, publishing privacy and cookie policies to comply with regulations, and providing clear contact and business information to improve credibility and trust.