High-risk security reports

F

FH Oberösterreich

fh-ooe.at

0

FH Oberösterreich (FH OÖ) is a leading university of applied sciences in Austria, offering a wide range of bachelor and master degree programs across multiple campuses. The institution emphasizes praxis-oriented education, personal consultation, and maintains strong international partnerships. The website reflects a mature digital presence with comprehensive content, clear navigation, and multilingual support. Technically, the site uses modern frameworks such as Vue.js and Craft CMS, and integrates various analytics and marketing tools with user consent mechanisms. However, the security posture is weakened by the absence of a valid SSL certificate and lack of security headers, exposing users to potential risks. Privacy compliance is well addressed with detailed policies and cookie consent. Overall, the site is professional and trustworthy but requires urgent improvements in SSL/TLS configuration to ensure secure communications.

W

WiLLTRON Technologies GmbH

willtron.at

0

WiLLTRON Technologies GmbH is a specialized Austrian company founded in 2005, focusing on testing, measuring, monitoring, and analyzing wired and wireless IP networks and communication systems. Their offerings include a range of hardware and software solutions, seminars, and webinars targeting network professionals and communication system installers. The company maintains strategic partnerships with international manufacturers, positioning itself as a niche provider in the telecommunications technology sector. The website reflects a professional and consistent brand image with clear contact information and service descriptions. Technically, the site is built on TYPO3 CMS with common frontend frameworks and libraries, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS exposes users to potential data interception risks and reduces trustworthiness. Privacy and cookie policies are present with consent mechanisms, but no terms of service or explicit security policies are found. Social media presence is moderate, including Facebook, LinkedIn, and Google Plus (deprecated). Overall, the website is functional and informative but requires urgent security improvements to meet modern standards.

Tungsten Automation Corporation, formerly known as Kofax, is a leading enterprise technology provider specializing in AI-powered workflow automation solutions. The company offers a broad portfolio of products including document and workflow automation, accounts payable and receivable automation, print and workplace automation, and PDF and eSignature solutions. Positioned as a market leader, Tungsten Automation is recognized by industry analysts such as Everest Group and IDC for its intelligent document processing capabilities. The company targets global enterprises seeking to streamline complex, data-intensive business processes and improve operational efficiency through AI and automation technologies. Technically, the website is built on a modern stack including Sitecore CMS, jQuery, and integrates multiple marketing and analytics tools such as Google Analytics, Visual Website Optimizer, and Eloqua. Hosting appears to be on Microsoft Azure. While the site demonstrates excellent content quality, branding consistency, and user experience, it suffers from critical security shortcomings, notably the absence of a valid SSL certificate and lack of HTTPS support, which severely impacts its security posture. Privacy policies and cookie consent mechanisms are present and GDPR compliant, supporting good privacy compliance. Overall, the site reflects a mature enterprise digital presence but urgently requires remediation of its SSL/TLS configuration to meet basic security standards.

G

Getzner Textil AG

getzner.at

0

Getzner Textil AG is a well-established Austrian textile manufacturer with a history dating back to 1818. The company specializes in high-quality fashion fabrics, corporate fashion textiles, personal protective equipment, sports equipment textiles, and industrial textiles, emphasizing innovation and sustainability. Their market position is strong within Europe, serving a diverse clientele including fashion designers, garment makers, and industrial users. The website reflects a mature digital presence with comprehensive content, clear navigation, and professional design. Technically, the site uses modern JavaScript libraries, Google Tag Manager, and Matomo Analytics, hosted behind Fastly CDN and Varnish cache. However, a critical security gap exists as the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which severely impacts security posture. Privacy and cookie policies are well implemented with consent mechanisms, and the company maintains active social media channels. Overall, the domain registration and DNS data align with the company's claims, indicating legitimacy and trustworthiness.

U

UBIMET

ubimet.com

0

UBIMET is a mature meteorological services company founded in 2008, specializing in providing high-precision, tailored weather data and integrated systems to businesses across sectors such as energy, transportation, insurance, retail, and media. The company leverages proprietary AI-driven weather models combining multiple data sources to deliver scalable and precise weather information. Their market position is strong, supported by a consistent brand, client testimonials, and certifications like ISO 27001. Technically, the website is built on WordPress with modern plugins and lazy loading for images, but suffers from critical security shortcomings including the absence of a valid SSL certificate and disabled TLS protocols, which significantly impact the security posture. Privacy compliance is well addressed with comprehensive policies and consent mechanisms. Overall, the site presents professional content and good user experience but requires urgent security improvements to protect user data and enhance trust.

The Australian Government Department of Foreign Affairs and Trade (DFAT) operates as the primary government agency responsible for managing Australia's international relations, trade, and diplomatic efforts. The website serves as an authoritative source of information for Australian citizens, international partners, businesses, and travelers, providing comprehensive content on foreign affairs, trade agreements, development programs, consular services, and travel advice. The site is well-branded, professionally designed, and consistent with government standards, reflecting its enterprise-level stature within the government sector. Technically, the website is built on Drupal 10 and hosted on GovCMS, a platform tailored for Australian government entities. It integrates modern tools such as Google Tag Manager and ReadSpeaker for analytics and accessibility. The site demonstrates good mobile optimization, accessibility, and SEO practices. However, performance metrics are unavailable, and some technical debt is evident in the lack of a valid SSL certificate and disabled TLS protocols, which critically impact security posture. From a security perspective, the absence of a valid SSL certificate and TLS support is a significant vulnerability, exposing users to potential data interception and undermining trust. While security headers like X-Content-Type-Options and X-Frame-Options are correctly implemented, the lack of HTTPS and session security mechanisms lowers the overall security score. Privacy compliance is partial, with a comprehensive privacy policy present but no cookie consent mechanism despite the use of tracking scripts. Contact information is clearly provided, enhancing business credibility. Overall, the website is a high-quality government portal with excellent content and user experience but suffers from critical security shortcomings that must be addressed urgently to protect users and maintain trust. Strategic improvements in SSL/TLS deployment, privacy compliance, and security best practices are recommended to elevate the site's security posture and compliance standards.

The website talent-alliance.com currently serves as a minimal placeholder with no substantive content, consisting solely of a frameset redirecting to talent-alliance.net. The domain is mature, registered since 2012, but the lack of content and absence of HTTPS indicates low digital maturity. The technical infrastructure is basic, hosted via EuroDNS with no SSL certificate installed, no modern security headers, and no privacy or cookie policies present. Security posture is weak with no encryption, no DNSSEC, and a misconfigured DMARC record pointing to a parking service. Overall, the site lacks business credibility and trust signals, which combined with minimal content, suggests it is either inactive or under development. Strategic recommendations include immediate SSL deployment, content development, and implementation of security best practices to improve trust and compliance.

The website innasol.com currently serves a security verification page that blocks access to any substantive content. The domain is mature, registered since 2010 with a reputable registrar, but the website itself lacks visible business information, contact details, or policies. Technically, the site uses nginx and Bootstrap with Google reCAPTCHA v3 for bot protection. However, it lacks a valid SSL certificate and HTTPS support, which is a critical security deficiency. The security posture is weak due to missing HTTPS, lack of security headers, and no incident response or security policy disclosures. Overall, the site appears to be in a protective mode, possibly to prevent automated access, but this severely limits the ability to assess the business or technical maturity. Strategic recommendations include implementing HTTPS, publishing clear business and security policies, and improving transparency to build trust.

H

Handel

handel.co.za

0

Handel is a South African-based small B2B marketing and communications agency offering a variety of services including brand positioning, content creation, event management, and digital marketing. The company targets business clients seeking creative and impactful marketing solutions. The website is built on HubSpot CMS and hosted behind Cloudflare, indicating a modern digital infrastructure. However, the site lacks a valid SSL certificate, resulting in no HTTPS support, which is a critical security flaw. Security headers are partially implemented, but the absence of HTTPS significantly reduces the overall security posture. Privacy compliance is weak, with no privacy or cookie policies found. Contact information is clearly presented, enhancing business credibility. Overall, the site demonstrates good content quality and professional design but requires urgent security improvements.

C

CompaxDigital Software Development GmbH

compax.at

0

CompaxDigital Software Development GmbH is a technology company specializing in cloud-native Business Support Systems (BSS) and Operations Support Systems (OSS) software for telecommunications and related industries. The company offers a SaaS platform with agile delivery and operational support, targeting telecom service providers, MVNOs, ISPs, and enterprises requiring digital transformation solutions. Their market position is supported by partnerships with major telecom operators and industry memberships such as TM Forum. The website is professionally designed with rich content, customer logos, and whitepapers, reflecting a mature digital presence. Technically, the website is built on WordPress using the Divi theme and several plugins for enhanced functionality, hosted on WP Engine with Cloudflare CDN. However, performance is slow, and accessibility is basic. SEO is adequately implemented with proper meta tags and structured data. Mobile optimization is good. Security posture is weak due to the absence of a valid SSL certificate and HTTPS enforcement, lack of modern TLS protocols, and missing security headers like HSTS. No cookie consent mechanism is present despite the use of tracking scripts such as Google Analytics and HubSpot. No explicit security policies or incident response contacts are found. Overall, the website demonstrates strong business credibility and content quality but suffers from critical security shortcomings that should be addressed promptly to protect user data and improve trustworthiness.

T

TeDaLoS GmbH

tedalos.net

0

TeDaLoS GmbH is a small Austrian technology company specializing in cloud-based smart inventory monitoring solutions leveraging IoT devices. Their SaaS platform targets end users, technical wholesalers, and sensor manufacturers, providing real-time stock and consumption data to optimize supply chain and warehouse management. The website is professionally designed, content-rich, and consistent with the company's business focus. Technically, the site runs on WordPress with modern plugins for SEO, spam protection, and cookie consent, but lacks a valid SSL certificate and HTTPS support, which significantly impacts security posture. Privacy compliance is strong with GDPR-aligned policies and cookie consent mechanisms. Overall, the business appears legitimate and trustworthy, but the lack of HTTPS is a critical security gap that should be addressed promptly.

A

agru Kunststofftechnik GmbH

agru.at

0

AGRU Kunststofftechnik GmbH is a well-established Austrian manufacturer specializing in high-quality plastic piping systems and related products for industrial sectors such as energy, construction, and infrastructure. The company has a strong market position as a single-source supplier with a focus on innovation, quality, and employee orientation. Their website reflects a professional business presence with comprehensive product and market information, supported by active social media channels and a GDPR-compliant privacy framework. Technically, the site is built on TYPO3 CMS with modern frontend technologies but suffers from a critical lack of HTTPS, severely impacting security and trust. The absence of SSL/TLS encryption exposes users to risks and reduces the overall security posture. Privacy compliance is well addressed through cookie consent and a detailed privacy policy. However, direct contact information like emails or phone numbers is not explicitly provided, relying mainly on forms. Overall, the site is functional and informative but requires urgent security improvements to meet modern standards.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

C

Coloplast Group

coloplast.com

0

Coloplast is a mature, enterprise-level healthcare company headquartered in Denmark, specializing in intimate healthcare solutions such as ostomy, continence, bowel, wound, urology, and respiratory care. The company operates globally with a presence in over 100 countries and serves more than 2 million people annually. Their website reflects a professional and comprehensive digital presence, targeting healthcare professionals, patients, investors, and job seekers. Technically, the site uses modern JavaScript frameworks, Episerver CMS, and integrates multiple third-party services including Salesforce, Stripe, and Cookiebot. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Business credibility is high, supported by detailed investor relations and sustainability information. Overall, the site is professionally designed and trustworthy but requires urgent security improvements.

Lenze is a large manufacturing and technology company specializing in automation solutions for industrial machinery and systems. Their website targets industrial manufacturers and automation professionals, offering a broad portfolio of products, software, and services including training and aftersales support. The company maintains a strong global presence with localized content for Austria and other regions. Technically, the website is built on TYPO3 CMS with modern frontend technologies and good SEO and accessibility practices. However, a critical security weakness is the absence of a valid SSL certificate, resulting in no HTTPS support despite HSTS headers being present. Security headers and content security policies are well implemented, but the lack of SSL significantly reduces the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a comprehensive privacy policy. Contact information is primarily via contact forms and social media channels, with no explicit emails or phone numbers visible. Overall, the website is professional and trustworthy but requires urgent SSL implementation to improve security and user trust.

P

Palmers Textil AG

palmers.at

0

Palmers Textil AG operates a well-branded e-commerce website focused on retailing lingerie, nightwear, and fashion apparel primarily targeting German-speaking European customers. The site leverages modern web technologies including Vue Storefront 2 and Magento backend, supported by AWS CloudFront CDN and various marketing and analytics tools such as Google Analytics and Facebook Pixel. Despite a professional presentation and comprehensive privacy and cookie policies, the website suffers from a critical security deficiency: the absence of a valid SSL/TLS certificate and HTTPS support, exposing users to potential data interception risks. Security headers are implemented but cannot compensate for the lack of encryption. The domain registration data aligns well with the business claims, indicating legitimacy and consistency. Overall, the website demonstrates good digital maturity but requires urgent security improvements to protect user data and enhance trust.

Software Competence Center Hagenberg (SCCH) is a medium-sized research and development center based in Austria, specializing in software competence and computational intelligence for industrial applications. The organization maintains a strong market position with national and international partnerships, offering services in data science, software science, project collaboration, consulting, and training. The website content is professionally presented in German, targeting industry professionals, researchers, partners, and potential employees. The business model focuses on research and innovation in technology for industry advancement. Technically, the website is built on the Contao Open Source CMS platform, utilizing Apache server technology and modern JavaScript libraries such as jQuery and Slick Carousel. Hosting is managed via Azure DNS services. While the website demonstrates good mobile optimization and basic SEO practices, performance metrics indicate slow loading times. Accessibility features are basic but present. From a security perspective, the site implements several important HTTP security headers including Content Security Policy, X-Frame-Options, and X-XSS-Protection. However, a critical weakness is the invalid SSL certificate and lack of proper HTTPS support, which significantly undermines the security posture. No advanced incident response or security policy documentation is found on the site. Privacy compliance is strong, with a comprehensive privacy policy, cookie consent mechanism, and GDPR adherence. Overall, the website is trustworthy and professionally maintained but requires urgent remediation of SSL/TLS issues to ensure secure communications and improve the security score. Strategic recommendations include fixing the SSL certificate, enabling modern TLS protocols, and enhancing performance and accessibility to strengthen the digital presence and security posture.

F

Fraunhofer Austria Research GmbH

fraunhofer.at

0

Fraunhofer Austria Research GmbH is a well-established applied research partner for the Austrian industry, specializing in digital networking, automation, machine vision, artificial intelligence, factory planning, production management, supply chain management, and digital logistics. The company operates as part of the larger Fraunhofer-Gesellschaft, Europe's largest applied research organization, positioning itself as a key player in Industry 4.0 within Austria. Their business model focuses on applied research and development through industry collaborations and publicly funded projects. Technically, the website is built on an Apache server with Adobe Experience Manager CMS, utilizing RequireJS and standard web technologies. While the site is mobile-optimized and well-structured with good SEO practices, performance data is limited and suggests slow loading. Accessibility is basic but functional. From a security perspective, the site lacks a valid SSL certificate and does not support HTTPS, which is a critical vulnerability. Although some security headers like HSTS, X-Content-Type-Options, and X-XSS-Protection are present, the absence of HTTPS severely undermines the security posture. No incident response or vulnerability disclosure policies are evident, and cookie consent mechanisms are missing, indicating partial privacy compliance. Overall, the website is professional and credible with clear business information and social media presence. However, the critical lack of HTTPS and incomplete privacy mechanisms present significant risks. Strategic improvements in SSL deployment, security policies, and privacy compliance are recommended to enhance trust and security.

P

ProSiebenSat.1 PULS 4

atv.at

0

ATV.at is the official website of the Austrian TV channel ATV, operated under the parent company ProSiebenSat.1 PULS 4. The site offers streaming of live TV, video on demand, and detailed program guides, targeting German-speaking audiences interested in entertainment and reality TV. The business model is primarily advertising-driven, leveraging partnerships with streaming platforms like JOYN to deliver content. The website demonstrates a high level of digital maturity with modern web technologies such as React and Next.js, providing a responsive and user-friendly experience across devices. However, the site currently lacks a valid SSL certificate, which is a critical security gap. While privacy and legal policies are comprehensive and GDPR compliant, the absence of HTTPS and security headers reduces the overall security posture. The domain registration data aligns well with the business claims, indicating legitimacy and trustworthiness. Strategic improvements in SSL implementation and security headers are recommended to enhance user trust and compliance.

J

Josef Manner & Comp AG

manner.com

0

Josef Manner & Comp AG operates the website manner.com, a well-established Austrian confectionery brand specializing in Viennese wafer specialties since 1890. The website showcases a comprehensive product range, including wafers, baking products, gingerbread, and merchandise, targeting consumers interested in traditional confectionery. The brand maintains a consistent and professional online presence with rich content, social media integration, and e-commerce capabilities. Technically, the site uses modern technologies such as Vue.js, Algolia search, and Cookiebot for consent management, hosted likely on DigitalOcean. However, the security posture is weak due to the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that undermines user trust and data protection. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR consent mechanisms. Overall, the website is professional and credible but requires urgent security improvements to meet modern standards.

M

Moody’s Analytics Austria GmbH

kompany.com

0

kompany is a specialized provider of real-time official company information and compliance solutions, operating as a Moody’s Analytics Austria GmbH subsidiary. The company offers services such as KYC, KYB, AML, and UBO compliance tools, credit and register reports, and entity verification across over 115 million companies globally. Their market position is strong due to Moody’s backing, targeting businesses requiring robust compliance and risk management data. Technically, the website uses modern JavaScript frameworks, Google Analytics 4, and Cloudflare for hosting and CDN services, but lacks a valid SSL certificate, which is a critical security gap. Security headers are partially implemented, but the absence of HTTPS and TLS protocols significantly reduces the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, kompany presents a professional and trustworthy business front with room for critical security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 10 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

N

Novellini S.p.A

novellini.com

0

Novellini S.p.A is a well-established Italian manufacturer specializing in bathroom products such as shower cubicles, whirlpool baths, and shower trays. The company maintains a strong international presence with localized websites for many countries, targeting consumers and businesses in the bathroom fixtures market. The website is professionally designed using Adobe Experience Manager CMS and includes modern JavaScript libraries and Google Tag Manager for analytics. However, the site lacks HTTPS, which is a critical security vulnerability, and does not provide visible privacy or cookie policies, impacting privacy compliance. Social media presence is active and official, enhancing brand trust. Overall, the website demonstrates good business credibility but requires urgent security improvements.

I

Incentage AG

incentage.com

0

Incentage AG is a Swiss-based software company specializing in innovative financial technology solutions for banking and financial institutions. Their offerings include modular platforms for payment processing, securities transactions, innovation acceleration, and risk management with cyber protection. The company positions itself as a pioneer in accelerating financial innovation with a focus on flexibility and end-to-end security. The website reflects a professional and consistent brand image targeting financial sector clients. Technically, the site uses modern web technologies including Webflow CMS, jQuery, Weglot for translations, and Google Tag Manager for analytics. Hosting is via Cloudflare, but a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture. Privacy compliance is well addressed with cookie consent mechanisms and a privacy policy, though no explicit security policy or incident response contacts are found. Overall, the domain registration data aligns well with the business claims, supporting legitimacy. Strategic improvements in SSL/TLS deployment and enhanced security practices are recommended to strengthen trust and compliance.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

Z

Zeus Petruzalek

petruzalek.com

0

Zeus Petruzalek is a well-established B2B manufacturer and distributor specializing in food packaging products and packaging machines. As part of the Zeus Group, it operates across multiple countries with a strong market presence in the manufacturing sector. The website demonstrates a professional and comprehensive digital presence with multilingual support and extensive product catalogs. Technically, the site is built on WordPress with WooCommerce and uses modern plugins and analytics tools, though performance metrics are not optimal. Security posture is weak due to the absence of a valid SSL certificate and HTTPS, exposing the site to risks and reducing trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is credible and professional but requires urgent security improvements to protect user data and enhance trust.

The website sergiotanus.com currently serves as a minimal placeholder with an immediate redirect to a 'defaultsite' page and no substantive content or metadata. The domain is registered and hosted via Ionos with DNS records properly configured, including valid SPF records for email. However, the site lacks a valid SSL/TLS certificate and does not support HTTPS, which is a critical security deficiency. There are no privacy, cookie, or terms of service policies present, nor any contact or business information available on the site. Technically, the site is very basic with no detectable frameworks, scripts, or analytics, indicating low digital maturity. Security posture is weak due to the absence of HTTPS and security headers, and the site does not implement modern security best practices. Overall, the website appears inactive or underdeveloped, which significantly limits its business credibility and trustworthiness.

D

DR YIELD software & solutions GmbH

dryield.com

0

DR YIELD software & solutions GmbH is a mature technology company specializing in smart data analysis and AI-driven yield analytics for the semiconductor industry. With over 20 years of experience, the company offers the YieldWatchDog platform and related modules to help semiconductor manufacturers improve product quality, reduce costs, and accelerate yield ramp. The website reflects a professional B2B software provider with a global customer base and strong industry trust signals. Technically, the site is built on WordPress with Elementor and leverages Cloudflare for CDN and caching, alongside Matomo for analytics. However, a critical security gap exists due to the absence of a valid SSL/TLS certificate, leaving the site without HTTPS protection. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the site is content-rich and professionally presented but requires urgent security improvements to protect user data and enhance trust.

M

Mundipharma International Limited

mundipharma.com

0

Mundipharma International Limited operates a global healthcare website focused on pharmaceutical and consumer health products with a strong patient-centric approach. The website targets healthcare professionals, patients, and partners, providing corporate information, career opportunities, and media resources. The digital infrastructure is built on Drupal CMS with integrations including Google Analytics, Hotjar, and various marketing and tracking tools, hosted behind Cloudflare CDN. While the website content is professionally presented with good navigation and mobile optimization, the security posture is weakened by an invalid SSL certificate and lack of TLS protocol support, which are critical issues that must be addressed to ensure secure communications and user trust. Privacy and cookie policies are comprehensive and GDPR compliant, but no explicit security policy or incident response information is publicly available. Overall, the website is credible and professionally maintained but requires urgent SSL/TLS remediation to improve security and trust.

Y

YTMP3

jobrocker.com

0

The website jobrocker.com operates as an online YouTube to MP3 and MP4 conversion service branded as YTMP3. It targets a broad audience including casual listeners, educators, and content creators by providing a free, fast, and easy-to-use tool without requiring registration or payments. The site emphasizes speed, audio quality, and simplicity, positioning itself as a reliable alternative to other converters. Technically, the site uses standard web technologies with Cloudflare CDN and Google Analytics for tracking, but lacks HTTPS encryption, which is a significant security concern. The absence of cookie consent and privacy compliance mechanisms further impacts user privacy. The domain is very new, registered in early 2025, consistent with the site's recent launch. Security posture is weak due to missing SSL and security headers, and no incident response or security policy information is provided. Overall, the site offers functional service but requires urgent security improvements to protect users and enhance trust.

D

Domain has been suspended

riseragency.com

0

The website riseragency.com is currently inaccessible for normal business operations as it displays a suspension notice due to failure to verify the registrant email address within the ICANN mandated 15-day period. No business-related content, contact information, or service descriptions are available, indicating the site is non-operational. The technical infrastructure is minimal, running on an Apache server with no SSL/TLS certificate, serving content over HTTP only. The presence of Google reCAPTCHA v2 on the suspension form suggests some basic bot protection on the verification process. Security posture is weak with no HTTPS, no modern TLS protocols, and no security headers implemented. The domain is registered and not vulnerable to subdomain takeover, but the suspension status and lack of compliance with ICANN email verification requirements significantly reduce trust and operational credibility. Overall, the site scores very low on content quality, security, privacy compliance, and business credibility, making it unsuitable for any business or customer engagement at this time.

M

Mersen

mersen.com

0

Mersen is a global industrial company specializing in electrical power and advanced materials, serving high-tech industries with customized solutions and key products. The company operates worldwide with over 50 industrial sites and 21 R&D centers across 33 countries, positioning itself as a leader in its sector. The website reflects a mature digital presence with comprehensive content, multi-language support, and active social media engagement. Technically, the site is built on Drupal 10 and leverages modern CDN and observability tools, but lacks a valid SSL certificate and modern TLS support, which is a critical security gap. Privacy and cookie policies are well implemented and GDPR compliant, but no explicit security policy or incident response information is provided. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS security to protect users and maintain credibility.

W

WAFF

waff.com

0

WAFF is a well-established local media company serving Huntsville, Alabama, providing comprehensive news, weather, and sports coverage. The website demonstrates a strong digital presence with rich content, video integration, and community engagement features. The technical infrastructure leverages modern web technologies and Arc Publishing CMS, ensuring good performance and mobile optimization. However, the absence of a valid SSL certificate and HTTPS support significantly impacts the security posture, exposing users to potential risks. Privacy policies and terms of service are well documented, indicating compliance awareness, though cookie consent mechanisms are lacking. Overall, WAFF presents a professional and trustworthy media outlet with room for security enhancements.

T

TCG UNITECH GmbH

unitech.at

0

TCG UNITECH GmbH is a well-established manufacturing company based in Austria, specializing in lightweight metal and plastic components for the automotive industry. The company operates as part of the Gnutti Carlo Group and offers a range of services including die casting, injection molding, and engineering solutions. Their website reflects a professional corporate presence with detailed information about their products, services, and corporate values. Technically, the site is built on WordPress with modern SEO practices and multilingual support, but lacks a valid SSL certificate, which is a significant security concern. The absence of HTTPS impacts the overall security posture and trustworthiness of the site. Privacy compliance is addressed with a clear privacy policy and cookie consent mechanism. Overall, the site is functional and informative but requires urgent security improvements to protect user data and enhance trust.

Binder Grösswang Rechtsanwälte GmbH is a leading Austrian law firm with over 60 years of experience providing comprehensive legal services to national and international clients. The firm holds a strong market position supported by multiple prestigious awards such as 'Law Firm of the Year - Austria' and consistent Tier 1 rankings. Their service offerings span various legal specialties and industries, targeting businesses and individuals seeking expert legal counsel. Technically, the website is built on TYPO3 CMS with modern frontend technologies and demonstrates good mobile optimization and accessibility. However, the website suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts its security posture. Privacy compliance is well addressed with a cookie consent mechanism and a comprehensive privacy policy. Overall, the website is professional and trustworthy but requires urgent security improvements to protect user data and enhance trust.

I

iodata GmbH

iodata.de

0

iodata GmbH is a medium-sized German technology company specializing in data analytics, business intelligence, and data integration solutions primarily using Qlik and Talend technologies. Established in 2007, the company positions itself as a leading provider and certified Qlik Elite Channel Partner, offering a comprehensive range of services including consulting, managed services, BI training, and advanced data integration platforms. The website reflects a professional and consistent brand image targeting business clients seeking advanced data-driven decision-making tools. Technically, the site leverages modern web technologies and HubSpot CMS, with integrations for cookie consent and analytics. However, a critical security gap exists due to the absence of a valid SSL certificate, exposing users to risks and undermining trust. Security headers are partially implemented, but the lack of HTTPS significantly lowers the security posture. Privacy compliance is well addressed with a comprehensive privacy policy and cookie consent mechanism. Overall, the site is content-rich and credible but requires urgent security improvements to align with best practices.

M

MM Group

mm-packaging.com

0

MM Packaging, a division of MM Group, is a leading global manufacturer of consumer packaging solutions specializing in pharmaceuticals, food, beauty, and consumer goods sectors. The company operates a network of 56 packaging sites worldwide, emphasizing innovation and sustainability in its product offerings. The website reflects a mature digital presence with comprehensive content, multilingual support, and strong branding consistent with an enterprise-level organization. Technically, the site is built on WordPress with modern marketing and analytics integrations, but suffers from a critical lack of a valid SSL certificate and modern TLS support, which significantly impacts its security posture. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the business credibility and content quality are high, but the security deficiencies pose a risk to user trust and data protection.

T

The United Nations in Vienna

unvienna.org

0

The United Nations in Vienna website serves as the official digital presence of the UN's Vienna-based offices and agencies. It provides comprehensive information about the UN family in Vienna, their initiatives, sustainable development goals, and visitor information. The site targets a broad audience including diplomats, researchers, media, and the general public interested in UN activities. The business model is informational and public service-oriented, reflecting the UN's governmental and non-profit nature. The website is well-branded, consistent, and authoritative in its domain space. Technically, the site uses a combination of AngularJS and React frameworks, served via Apache, with integration of Google Tag Manager for analytics. The site is mobile optimized and has good navigation and content quality. However, performance metrics are unavailable, and accessibility is basic. SEO is moderately implemented with proper meta tags and Open Graph data. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. While some security headers are present, the absence of TLS protocols, cipher suites, DMARC, DNSSEC, and CAA records indicates a weak security posture. No incident response or vulnerability disclosure information is publicly available. Privacy compliance is basic, with a privacy policy present but no cookie consent mechanism despite tracking scripts. Overall, the website is trustworthy and credible given its UN affiliation and mature domain. However, the lack of HTTPS and modern security practices significantly lowers its security score and poses risks to users. Strategic improvements in SSL deployment, email security, and privacy compliance are recommended to enhance trust and security.

S

Semperit AG Holding

semperitgroup.com

0

Semperit AG Holding is a well-established global manufacturer specializing in industrial polymer products and solutions, with a history dating back to 1824. The company operates multiple business divisions including hoses, profiles, form, conveyor belts, and Rico products, targeting industrial clients and investors. The website reflects a mature and professional digital presence, leveraging TYPO3 CMS and modern web design principles to provide a rich user experience. However, the absence of HTTPS and valid SSL certificates represents a significant security vulnerability that undermines user trust and data protection. While privacy and cookie policies are comprehensive and GDPR compliant, the lack of explicit security and incident response information suggests room for improvement in transparency and preparedness. Overall, the domain registration and WHOIS data confirm the legitimacy and maturity of the business, supporting a high trustworthiness rating despite technical security shortcomings.

Flughafen Wien AG operates Vienna International Airport, providing a wide range of passenger services including flight information, parking, lounges, VIP services, and retail. The website targets passengers, business partners, and visitors, positioning itself as a leading airport in Austria with comprehensive service offerings. The digital infrastructure uses modern frameworks like Bootstrap and integrates privacy-conscious analytics via Matomo. However, the absence of a valid SSL certificate and HTTPS significantly undermines the security posture. Security headers are partially implemented, but critical improvements are needed to secure user data and communications. The domain is mature and legitimately registered, consistent with the airport's long-standing presence. Overall, the website is professional and content-rich but requires urgent security enhancements.

S

Skyliner Automatisering B.V.

skyliner.nl

0

Skyliner Automatisering B.V. is a mature Dutch ICT service provider established in 1999, offering a broad range of ICT solutions including system management, cloud services, VoIP, software development, and security services. The company targets businesses and organizations in the Netherlands seeking reliable and comprehensive ICT support. Their market position is supported by long domain tenure, recognized certifications, and positive customer testimonials. Technically, the website is built on WordPress with modern plugins and scripts, but suffers from a lack of proper SSL/TLS configuration, impacting security posture. The site is well structured with good SEO and mobile optimization, though performance metrics indicate slow loading. Security-wise, the absence of HTTPS and security headers are critical issues, though no active vulnerabilities or WAF blocking were detected. Privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, the website reflects a credible and professional ICT business but requires urgent improvements in SSL security to enhance trust and compliance.

R

Reppublika Research

mindtake.com

0

Reppublika Research is a well-established full-service market research institute specializing in data-driven media and consumer research across Germany, Austria, and the CEE region. With over two decades of experience, the company offers comprehensive quantitative, qualitative, and behavioral research services, supported by proprietary panels and advanced technical capabilities. Their client portfolio includes major corporations such as Google, IKEA, and Allianz, underscoring their strong market position and credibility. Technically, the website is built on the Wix platform, leveraging a modern tech stack including React 18 and various Wix apps, ensuring a professional and content-rich online presence. However, the security posture is currently limited by the absence of a valid SSL certificate and proper HTTPS configuration, which poses a significant risk and impacts user trust. Privacy compliance is well addressed with clear policies and GDPR adherence. Overall, the company demonstrates strong business credibility and digital maturity but should prioritize improving its security infrastructure to enhance trust and protect user data.

The website prinzhorn-holding.com is currently inaccessible due to a configuration issue where plain HTTP requests are sent to an SSL-enabled server port, resulting in a 400 Bad Request error. This prevents access to any meaningful content, including business information, policies, or contact details. The technical infrastructure is based on Apache running on Amazon Linux with OpenSSL, but no valid SSL certificate is installed, and no modern TLS protocols are enabled. DNS records are properly configured with valid MX and NS entries, and SPF records indicate legitimate email sending sources. However, the lack of HTTPS and security headers severely impacts the security posture. No privacy or cookie policies are present, and no contact or business information is visible on the landing page, limiting trust and credibility. Overall, the site is not currently usable for visitors and requires urgent remediation of SSL and content accessibility issues.

I

International Jet Management GmbH

ijm.at

0

International Jet Management GmbH is a specialized aviation management company based in Austria, providing aircraft management, charter services, and fleet operations primarily targeting business aviation clients. The company holds recognized certifications such as IS-BAO and has approvals from aviation authorities, positioning it as a credible player in the transportation sector. The website reflects a professional business presence with clear service offerings and contact information. Technically, the website is built on WordPress with common libraries like jQuery and Modernizr, and uses Yoast SEO for optimization. However, the site lacks HTTPS, which is a significant security concern. The absence of SSL/TLS encryption exposes users to potential data interception risks. Security headers are minimal, and no advanced security policies or incident response contacts are published. Privacy compliance is partially addressed with a privacy policy present, but no cookie consent mechanism is implemented. Overall, the site demonstrates moderate digital maturity but requires urgent improvements in security posture to protect user data and enhance trust.

D

Diesel

diesel.com

0

Diesel operates a global e-commerce platform specializing in fashion apparel and accessories, providing localized shopping experiences through country-specific domains. The website analyzed is a country selector landing page that directs users to various regional sites. The technical infrastructure leverages Salesforce Commerce Cloud (Demandware) and is hosted behind Cloudflare, with usage of Adobe Fonts and Tealium for analytics and marketing. However, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical security deficiency. Security headers are partially implemented, but the absence of HTTPS significantly undermines the security posture. Privacy and cookie policies are not present on this landing page, and no contact information is provided, limiting transparency and compliance with privacy regulations. Overall, the site demonstrates a basic level of technical and content maturity but requires urgent improvements in security and privacy compliance to meet modern standards.

P

Post & Co

post-co.com

0

Post & Co is an independent provider specializing in marine liability and logistics insurance, serving a broad range of clients in the maritime and logistics sectors including ship owners, charterers, terminal and transport operators, and port authorities. The company emphasizes quality service, innovation, and market focus, with a presence in Rotterdam, Antwerp, and Frankfurt. Their website reflects a professional business with multilingual support and clear contact channels. Technically, the site is built on WordPress using common plugins and frameworks but lacks a valid SSL certificate, which significantly impacts security posture. The site uses Google Analytics and has cookie consent mechanisms in place, indicating some privacy compliance. However, the absence of HTTPS and modern TLS protocols presents a critical security risk. Overall, the business appears legitimate and established, but the website requires urgent security improvements to protect user data and enhance trust.

M

MARTIN NEUHAUS

martinneuhaus.de

0

The website martinneuhaus.de serves as a personal portfolio and professional presentation platform for Martin Neuhaus, an actor based in Schwerin, Germany. The site primarily targets German-speaking audiences interested in theater and acting, offering access to showreels and professional contact via email and social media. The business model is focused on personal branding and professional networking within the media industry. The website is small scale and individual in nature, with consistent branding and basic content quality. Technically, the site is built on WordPress 6.8.1 using the Mesmerize Pro theme and several common plugins such as Contact Form 7 and CoBlocks. It is hosted likely on GoDaddy infrastructure, inferred from DNS and mail server data. The site suffers from slow performance with a load time exceeding 20 seconds, but it is mobile optimized and has good SEO metadata implemented. Accessibility is basic but present. From a security perspective, the site lacks a valid SSL certificate and does not serve content over HTTPS, which is a critical vulnerability. No security headers or advanced TLS protocols are enabled, and no incident response or vulnerability disclosure policies are found. Privacy compliance is minimal with no privacy or cookie policies detected. The domain registration is consistent and legitimate, with no privacy protection or suspicious red flags, but domain protection locks are not enabled. Overall, the site presents moderate business credibility but poor security and privacy posture. Strategic improvements should focus on enabling HTTPS, implementing security headers, adding privacy and cookie policies, and improving site performance to enhance trust and compliance.

WEB Windenergie AG is a large Austrian renewable energy company specializing in wind, photovoltaic, and hydropower plants. The company emphasizes citizen participation and operates across eight countries on two continents. Their business model focuses on green energy production and investment opportunities, positioning them as a leading player in Austria's renewable energy sector. The website is professionally designed with comprehensive content targeting private customers, business clients, municipalities, and investors. Technically, the site uses TYPO3 CMS with modern JavaScript libraries and responsive design, but lacks HTTPS, which is a critical security flaw. Security headers are partially implemented, but the absence of SSL/TLS severely impacts the security posture. Privacy compliance is good with clear privacy and cookie policies and consent mechanisms. Contact information and trust signals such as certifications and social media presence enhance business credibility. Overall, the site is functional and professional but urgently requires HTTPS implementation to improve security and trust.

Digital Realty Trust operates a global platform of data centers and colocation services under the PlatformDIGITAL® brand, serving a broad range of enterprise, cloud, and network customers. The company is a market leader with a large global footprint, extensive certifications, and a strong partner ecosystem including AWS, Google Cloud, IBM, Oracle, NVIDIA, HPE, and Microsoft Azure. The website content is rich, professionally designed, and well-structured, targeting enterprises needing secure, scalable, and interconnected IT infrastructure. Technically, the site uses modern frameworks like Next.js and React, with integrations for marketing and analytics tools such as Marketo and VWO. However, the security posture is weakened by the absence of a valid SSL certificate and lack of HTTPS, which is a critical issue that impacts trust and security. Privacy and cookie policies are present with consent mechanisms, indicating good privacy compliance. Overall, the site demonstrates high business credibility but requires urgent improvements in SSL/TLS configuration to enhance security.

D

DS Smith

dssmith.com

0

DS Smith is a leading international manufacturer specializing in sustainable packaging solutions, paper products, and recycling services. The company positions itself as a global leader in sustainability within the packaging industry, targeting businesses seeking eco-friendly and innovative packaging and recycling options. The website reflects a mature digital presence with comprehensive content, multi-language support, and strong branding consistency. Technically, the site uses modern web technologies including React, Google Tag Manager, Google Analytics, and Microsoft Application Insights, hosted behind Cloudflare for performance and security. However, the SSL certificate is currently invalid or missing, which undermines the security posture. The site implements strong security headers and content security policies but has a notable subdomain takeover vulnerability on shop.dssmith.com. Privacy and cookie policies are present with consent mechanisms, indicating good GDPR compliance. Contact information is primarily via forms and physical address, with no explicit emails or phone numbers on the homepage. Social media presence is robust and consistent with corporate branding.