High-risk security reports

S

Strelle Records

strelle.at

0

Strelle Records is a small Austrian media and event technology service provider specializing in audio, video, lighting, installations, and event planning since 2011. The company targets event organizers, artists, and media producers primarily in the Kärnten region. The website is built on WordPress with a modern theme and integrates Google Analytics and Jetpack for analytics and performance tracking. However, the site lacks HTTPS, which is a critical security deficiency. The cookie consent mechanism is implemented, but no privacy policy or terms of service pages are present, indicating partial GDPR compliance. Contact information is clearly provided, and social media presence is strong, enhancing business credibility. Overall, the technical infrastructure is moderate but requires urgent security improvements.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 11 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

L

Leica Microsystems

leica-microsystems.com

0

Leica Microsystems is a well-established global leader in microscopy and imaging solutions, serving diverse sectors including life sciences, industrial manufacturing, medical specialties, and education. The company offers a broad portfolio of products ranging from light and confocal microscopes to software and consumables, supported by comprehensive service and application support. The website reflects a mature digital presence with rich, professional content and consistent branding, targeting scientific and industrial professionals worldwide. Technically, the site is built on TYPO3 CMS with modern frontend technologies and integrates marketing and analytics tools such as Google Tag Manager and OneTrust for cookie consent. However, the current lack of a valid SSL certificate and absence of HTTPS significantly undermines the security posture, despite the presence of several security headers and policies. Privacy compliance is well addressed with clear privacy and cookie policies and GDPR adherence. WHOIS data confirms the domain's maturity and legitimacy, registered under Network Solutions without privacy protection, consistent with the company's profile. Strategic improvements in SSL/TLS configuration and enhanced security practices are recommended to elevate trust and protect user data.

Europapier International AG is a large, well-established paper merchant headquartered in Vienna, Austria, with a strong presence across Central and Eastern Europe. The company offers a broad portfolio of paper and paper-related products, supported by extensive warehousing and distribution infrastructure. As part of the Heinzel Group since 2010, Europapier serves a diverse B2B customer base including commercial printers and specialty market businesses. The website reflects a mature digital presence with comprehensive business and product information, professional design, and good user experience. However, the absence of HTTPS and SSL/TLS encryption represents a significant security risk, undermining user trust and data protection. The site employs modern technologies such as Pimcore CMS and Google Tag Manager for analytics, but performance data suggests potential loading delays. Legal and privacy compliance is well addressed with clear policies and cookie consent mechanisms. Overall, Europapier demonstrates strong business credibility but requires urgent security improvements to align with best practices.

S

SZCO Supplies, Inc.

szco.com

0

SZCO Supplies, Inc. operates a wholesale e-commerce platform specializing in knives, swords, self-defense products, and historical replicas. The company targets wholesale buyers, collectors, and enthusiasts in the United States, offering a broad catalog of niche products. The website is built on a classic ASP.NET Web Forms platform hosted on Microsoft IIS, with Ephost as the hosting provider. The technical infrastructure includes jQuery and Bootstrap for frontend interactivity and layout. However, the site lacks modern performance optimizations and accessibility features. From a security perspective, the website does not have a valid SSL certificate, resulting in no HTTPS support, which is a critical vulnerability. Security headers are minimal, and no advanced security practices like HSTS or OCSP stapling are implemented. Privacy compliance is poor, with no visible privacy or cookie policies, and user tracking is done via Google Analytics without clear consent mechanisms. Contact information is clearly presented, enhancing business credibility, but the lack of security and privacy controls poses risks. Overall, the site is functional and professionally designed but requires urgent improvements in security and privacy compliance to protect user data and build trust. Strategic recommendations include obtaining a valid SSL certificate, enabling HTTPS, implementing comprehensive privacy policies, and enhancing security headers and protocols.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 8 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

B

BWT Holding GmbH

bwt.fr

0

BWT Holding GmbH operates a comprehensive website focused on water treatment solutions, targeting private consumers and professional sectors in France. The site offers detailed product and service information, supported by a consistent brand presence and multiple customer contact channels. Technically, the website uses modern JavaScript libraries, Google Tag Manager, and performance optimization tools, hosted behind Cloudflare. However, a critical security weakness is the invalid SSL certificate and lack of TLS protocol support, which significantly undermines the site's security posture. Privacy and cookie policies are present and appear GDPR compliant, with consent mechanisms implemented. Overall, the site is professional and content-rich but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

B

Bacher Systems EDV GmbH

bacher.at

0

Bacher Systems EDV GmbH is a medium-sized Austrian IT services company specializing in managed services, cybersecurity, data analytics, and digital identity solutions. The company targets large enterprises, including numerous Top 100 companies in Austria, positioning itself as a trusted partner for IT infrastructure and security needs. The website reflects a professional and comprehensive digital presence with clear service offerings and client references. Technically, the site is built on Silverstripe CMS and integrates modern marketing and analytics tools, but suffers from critical SSL/TLS configuration issues that undermine its security posture. Security headers and privacy compliance are well implemented, including GDPR-aligned privacy and cookie policies with consent mechanisms. WHOIS data confirms the legitimacy and consistency of the domain registration with the company's Austrian base. Overall, the website is professional and trustworthy but requires urgent improvements in SSL/TLS to ensure secure communications.

Y

Yokogawa Electric Corporation

yokogawa.com

0

Yokogawa Electric Corporation is a century-old global enterprise specializing in measurement, control, and information technologies for industrial sectors such as energy and manufacturing. The company maintains a comprehensive and professionally designed website that serves a global audience with extensive product, solution, and corporate information. Technically, the site employs modern web technologies including AngularJS and integrates analytics and monitoring tools like Google Tag Manager and New Relic. However, the absence of a valid SSL certificate and HTTPS support significantly weakens its security posture, exposing users to potential risks. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance with GDPR standards. Overall, the website demonstrates high business credibility and content quality but requires urgent security improvements to align with best practices.

E

EVVA Sicherheitstechnologie GmbH

evva.com

0

EVVA Sicherheitstechnologie GmbH is a well-established Austrian company specializing in the development and manufacturing of mechanical, electronic, and mechatronic locking and access control systems. Positioned as a leading provider in Europe, EVVA serves a diverse range of sectors including residential, commercial, healthcare, education, and infrastructure. Their website reflects a mature business with comprehensive product offerings, detailed project references, and strong branding consistency. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and integrates privacy tools such as TRUENDO and Google reCAPTCHA. However, a critical security shortfall is the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy and cookie policies are well implemented, indicating good GDPR compliance. Contact information is clearly presented with multiple channels including forms, phone, and email. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent security improvements to protect user data and maintain trust.

S

sincosinco.com

sincosinco.com

0

The website sincosinco.com is currently a parked domain primarily serving advertising content through Google Adsense and Bodis. There is no active business presence or descriptive content about services or products. The domain is mature, registered since 2011, and managed by Porkbun LLC, indicating stable ownership but no active commercial use. Technically, the site lacks HTTPS support and security best practices, resulting in a low security posture. Performance is poor with a high page load time, and there is minimal mobile or accessibility optimization. Privacy compliance is lacking, with no cookie consent or GDPR indicators. Overall, the site appears to be a placeholder rather than a functional business website.

L

Log Consulting Services

log-cs.com

0

Log Consulting Services is a specialized business consulting firm focusing on AI-powered process optimization, advanced logistics (5PL), and fiscal strategies for market expansion, particularly in Europe. The company leverages over a decade of Lean and Six Sigma expertise combined with AI analytics to deliver tailored solutions that enhance operational efficiency and support sustainable growth. The website is built on the Wix platform, utilizing various Wix apps and technologies to provide a professional and content-rich user experience. However, the site currently suffers from an invalid SSL certificate, which poses a significant security risk and undermines user trust. Additionally, while a cookie policy is present, there is no explicit consent mechanism, which may affect privacy compliance. Overall, the business presents itself as credible and professional, with clear contact information and structured data enhancing its online presence.

I

I.Q. Bürotechnik Verkauf - Service GesmbH.

iqbuerotechnik.at

0

I.Q. Bürotechnik Verkauf - Service GesmbH. is a medium-sized Austrian company specializing in printing solutions, IT services, and office technology products. The company offers a broad range of services including copiers, printers, scanners, telephony, cash register systems, and consumables, targeting business customers primarily in Austria. The website is professionally designed and provides comprehensive information about their products and services, with multiple regional locations listed. The business is positioned as an established regional provider with over 30 years of experience and verified by the Austrian Chamber of Commerce.

HypoVereinsbank by UniCredit Bank GmbH operates a professional and comprehensive banking website targeting private and corporate customers in Germany. The site offers a wide range of financial services including online banking, investment products, loans, and wealth management. It is well-positioned in the market, recognized by industry awards such as 'Bank of The Year 2024' and 'Fairste Filialbank 2024'. The website demonstrates strong branding consistency and trust indicators, with clear contact information and GDPR compliance. Technically, the site uses modern JavaScript libraries and is hosted via Akamai with Adobe Experience Manager as the CMS platform. However, performance is currently slow and SSL/TLS configuration is invalid, which poses security risks. Security headers are mostly present but the Content-Security-Policy is overly permissive. No WAF or blocking mechanisms are detected, allowing full content access. Privacy and cookie policies are implemented with consent mechanisms. Overall, the site is professional and trustworthy but requires urgent SSL fixes to improve security posture.

K

Konica Minolta Business Solutions Austria GmbH

konicaminolta.at

0

Konica Minolta Business Solutions Austria GmbH operates as a leading technology and managed service provider specializing in intelligent workplace solutions, printing systems, cloud services, and IT infrastructure management. The company holds a strong market position in Austria and the DACH region, supported by a broad portfolio including multifunctional printers, professional printing, enterprise software, cybersecurity, and healthcare solutions. Their business model leverages direct sales and a partner network to serve a diverse business clientele. Technically, the website is built on modern frameworks such as Next.js and hosted on Vercel, with a CMS likely powered by Contentstack. The site demonstrates good mobile optimization, accessibility, and SEO practices, although performance is currently slow. Analytics and consent management tools like Google Tag Manager and Usercentrics are integrated, indicating a mature digital infrastructure. From a security perspective, the absence of a valid SSL certificate and HTTPS support is a critical vulnerability, severely impacting the site's security posture. While some security headers are present, the lack of TLS protocols and session management features exposes the site to risks. Privacy compliance is strong, with comprehensive policies and consent mechanisms in place. Overall, the site is professionally designed and content-rich, reflecting a reputable business. However, the critical lack of HTTPS undermines trust and security, necessitating urgent remediation to protect users and maintain compliance.

S

seso media group gmbh

seso.at

0

SESO media group gmbh is a well-established Austrian digital agency specializing in consulting, creative services, and digital development. The company targets businesses seeking to enhance their digital presence and user experience, positioning itself as a partner for digital transformation in the Economy of Experiences. Their client portfolio includes notable brands such as A1 Telekom Austria, Jägermeister, Red Bull, and AbbVie, indicating a strong market presence in Austria and Switzerland. The website content is professionally crafted, with clear messaging and consistent branding that supports their market positioning. Technically, the website is built on WordPress with a modern frontend stack including Bootstrap, jQuery, GSAP, and AOS for animations. The site is mobile-optimized and SEO-friendly, leveraging Yoast SEO plugin and structured data for enhanced search visibility. Hosting appears to be managed via GlobeDom DNS services, and email protection is handled through Microsoft Outlook's mail protection services. However, performance metrics are unavailable, and accessibility is basic but functional. From a security perspective, the site lacks a valid SSL/TLS certificate, resulting in no HTTPS support, which is a critical vulnerability. Although several security headers are implemented, the absence of HTTPS severely undermines the overall security posture. No vulnerability disclosure or incident response policies are publicly available. Privacy and cookie policies are present and appear GDPR compliant, with a consent mechanism implemented. Contact information is comprehensive, including email, phone, physical address, and a detailed contact form. Overall, while SESO demonstrates strong business credibility and digital maturity, the lack of HTTPS is a significant risk that must be addressed immediately to protect user data and maintain trust. Strategic recommendations include installing a valid SSL certificate, enabling modern TLS protocols, and enhancing security configurations. The website otherwise reflects a professional and trustworthy digital agency with a solid market position.

Berlitz Austria GmbH is a well-established language learning and corporate training provider, offering a wide range of language courses and intercultural training programs for adults, children, and businesses. The website demonstrates a strong market position with a comprehensive service portfolio including online and on-site learning options. The technical infrastructure leverages modern technologies such as React, Gatsby, and AWS hosting, ensuring a robust digital presence. However, the site currently lacks a valid SSL certificate, which impacts its security posture. While security headers are properly configured, the absence of a cookie consent mechanism may affect GDPR compliance. Overall, the website is professionally designed, user-friendly, and content-rich, supporting a positive user experience and strong business credibility.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 17 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

INFINA

infina.at

0

INFINA is a leading independent credit brokerage firm in Austria specializing in residential construction financing. The company offers comprehensive credit comparison services from over 120 banks, personal consultation, and a wide range of financial tools to assist customers in securing optimal mortgage financing. Their extensive network of over 100 local partners ensures personalized service throughout Austria. The website reflects a mature and professional business with excellent content quality and user experience, targeting individuals and families seeking home financing solutions. Technically, the site is built on TYPO3 CMS with modern web technologies and includes interactive calculators and consent management tools. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with GDPR-aligned policies and cookie consent mechanisms. Overall, the business demonstrates strong credibility and market position but must urgently address its SSL/TLS configuration to improve security and trust.

H

Hochschule Neubrandenburg

hs-nb.de

0

Hochschule Neubrandenburg is a German public university of applied sciences offering a range of academic programs, research initiatives, and continuing education services primarily focused on agriculture, health, social work, and landscape sciences. The website serves students, prospective students, researchers, and regional partners with comprehensive information and resources. Technically, the site is built on TYPO3 CMS with modern JavaScript libraries and includes privacy-conscious analytics via Matomo. However, the absence of HTTPS/SSL is a critical security gap that undermines user trust and data protection. Security headers are well configured but cannot compensate for the lack of encryption. The site lacks cookie consent mechanisms and explicit security or incident response policies. Overall, the website is professional and content-rich but requires urgent security improvements to meet modern standards.

G

Gofore Oyj

e-mundo.de

0

Gofore Oyj is a Finnish digital consulting company that has integrated eMundo GmbH to strengthen its presence in the DACH region, operating under the Gofore brand with a new Munich headquarters. The website content is professional, well-structured, and targets businesses seeking digital transformation services. The technical infrastructure is based on WordPress CMS hosted on AWS with modern analytics and marketing tools, but performance is currently slow and the site lacks HTTPS, which is a critical security gap. Security posture is weak due to missing SSL/TLS certificates and lack of modern protocol support, though other security best practices like SPF and vulnerability mitigations are in place. Privacy compliance is strong with comprehensive policies and consent mechanisms. Overall, the site is credible and trustworthy but urgently needs to address HTTPS and SSL issues to improve security and user trust.

A

Arduino

arduino.cc

0

Arduino is a globally recognized open-source electronics platform that empowers makers, professionals, and educators to innovate with accessible hardware and software solutions. The company maintains a strong market position with a comprehensive product portfolio including hardware boards, cloud services, and educational resources. Their digital infrastructure leverages modern web technologies such as Next.js and DatoCMS, hosted on AWS and delivered via Cloudflare CDN, ensuring a robust and scalable online presence. Despite a rich content offering and professional design, the website currently suffers from critical SSL/TLS misconfigurations that undermine its security posture. Privacy and cookie policies are comprehensive and GDPR compliant, reflecting a mature approach to user data protection. Overall, Arduino demonstrates high business credibility and technical maturity but should urgently address SSL certificate validity and TLS protocol support to enhance security and trust.

N

Nuance Communications

nuance.com

0

Nuance Communications is a mature enterprise technology company specializing in AI-powered healthcare and productivity solutions. Recently acquired by Microsoft, it leverages industry-leading AI, security, and infrastructure to transform workflows and boost productivity for healthcare professionals and enterprises. The website reflects a professional and consistent brand presence with clear business messaging and a strong market position in the technology and healthcare sectors. Technically, the site uses a modern tech stack including Apache, Adobe Experience Manager CMS, and integrates analytics and marketing tools such as Google Analytics, Google Tag Manager, and Adobe Helix RUM. However, a critical security gap exists due to the absence of SSL/TLS encryption, exposing the site to significant risks. Security headers are well implemented, but without HTTPS, their effectiveness is limited. Privacy and legal policies are comprehensive and GDPR compliant, with consent mechanisms in place. Overall, the site demonstrates good digital maturity but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions and maintain trust.

U

Universität Klagenfurt

aau.at

0

Universität Klagenfurt is a large, well-established public university in Austria, serving as the largest academic institution in Carinthia. The website provides comprehensive information about academic programs, research initiatives, student services, and international collaborations. It targets a broad audience including prospective students, current students, researchers, staff, and alumni. The digital infrastructure is based on WordPress with a modern theme and multiple plugins supporting SEO, events, and accessibility. However, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical security vulnerability. Privacy and cookie policies are well implemented with user consent mechanisms, and the university demonstrates strong business credibility through multiple certifications and accreditations. Overall, the site is professional and content-rich but requires urgent security improvements to protect user data and ensure trust.

R

Rendity GmbH

rendity.com

0

Rendity GmbH operates a leading European online platform for real estate investments, enabling users to invest in rental properties and development projects starting from 100 €. The company emphasizes investor protection through regulatory compliance with electronic securities law, PCI DSS, and PSD2 standards, and offers deposit protection up to 100,000 €. The platform is technologically modern, built on Next.js and served via Cloudflare CDN, with a strong focus on user experience and mobile optimization. However, the website suffers from a critical security issue: the SSL certificate is invalid and no TLS protocols are enabled, severely impacting the security posture. Privacy and cookie policies are comprehensive and GDPR compliant, and contact information is clearly provided. The domain registration data aligns well with the company's business claims, supporting legitimacy and trustworthiness.

The domain mastercardadvisors.com is registered and associated with Mastercard Advisors, a business likely involved in financial consulting or advisory services. However, the website is currently inaccessible, returning a 404 Not Found error page with no visible content, metadata, or business information. This severely limits the ability to assess the company's digital presence or service offerings. Technically, the site lacks a valid SSL certificate and does not support any TLS protocols, resulting in a poor security posture despite some security headers being present. DNS security features such as DNSSEC and CAA records are not enabled, further reducing the domain's security robustness. Overall, the website's lack of accessible content and invalid SSL configuration present significant risks and reduce trustworthiness.

The website for viennaconservatory.at currently serves only a minimal maintenance placeholder page with no substantive content or metadata. The domain is registered and hosted behind Cloudflare, using PHP 8.3.22, but lacks a valid SSL certificate, resulting in HTTP-only access. No privacy, cookie, or terms of service policies are present, and no contact information or business details are provided on the site. This severely limits the site's usability and trustworthiness for visitors. From a technical perspective, the site uses a basic PHP backend and Cloudflare for hosting and DNS, but performance data is unavailable and the site shows poor SEO, accessibility, and mobile optimization. Security headers are minimal and no advanced security practices are implemented. The absence of HTTPS is a critical security issue. The security posture is weak due to the lack of SSL/TLS encryption and missing security headers. No vulnerabilities such as Heartbleed or POODLE were detected, but the site is exposed to risks from unencrypted traffic. The lack of privacy and cookie policies also indicates non-compliance with GDPR and related regulations. Overall, the site is not currently functional for end users and presents significant security and compliance gaps. Strategic recommendations include implementing HTTPS with a valid certificate, publishing privacy and cookie policies with consent mechanisms, adding contact and business information, and improving content quality and SEO to enhance trust and usability.

B

Bartenbach GmbH

bartenbach.com

0

Bartenbach GmbH is an established lighting innovation company based in Austria, specializing in holistic lighting planning, lighting technology development, and scientific research on the effects of light on humans and the environment. The company targets businesses and organizations seeking advanced lighting solutions to improve wellbeing, energy efficiency, and social interaction in spaces. Their website reflects a mature and professional presence with clear business information and a focus on innovation and sustainability. Technically, the site is built on WordPress with Elementor and uses modern SEO and marketing plugins, indicating a good level of digital maturity. However, the absence of a valid SSL certificate and HTTPS significantly weakens the security posture, exposing visitors to potential risks. Privacy compliance is well addressed with comprehensive policies and a cookie consent mechanism. Overall, the website is functional and professional but requires urgent security improvements to protect user data and enhance trust.

I

Ivoclar Vivadent

ivoclarvivadent.com

0

Ivoclar Vivadent operates a comprehensive and professionally designed website targeting dental professionals including dentists and technicians. The company offers innovative dental materials and digital equipment solutions, positioning itself as a leading enterprise in the healthcare sector. The website demonstrates strong digital maturity with modern JavaScript frameworks, extensive use of marketing and analytics tools, and a consistent brand presence. However, a critical security gap exists due to the absence of a valid SSL certificate and enabled TLS protocols, which significantly impacts the security posture and user trust. Privacy compliance is well addressed with clear policies and consent mechanisms. Overall, the site is content-rich and user-friendly but requires urgent security improvements to meet industry standards.

I

Invitario GmbH

invitario.com

0

Invitario GmbH offers a professional software solution for smart participant and invitation management tailored for various types of events including live, virtual, and hybrid formats. The company positions itself as a trusted provider with ISO 27001 certification and a strong focus on GDPR compliance, serving a broad range of industries and company sizes. Their platform supports comprehensive event marketing and management processes, integrating data analytics and personalized communication to enhance event success. Technically, the website is built on WordPress using the Divi theme and incorporates modern tools such as Lottie animations and Borlabs Cookie for consent management. However, the security posture is weakened by an invalid SSL certificate and lack of proper TLS configuration, which is a critical issue that must be addressed to ensure secure data transmission and user trust. Overall, the website demonstrates high content quality, good business credibility, and solid privacy compliance, but requires immediate improvements in SSL/TLS security to enhance its security score and user confidence.

R

Robert Bosch GmbH

bosch.us

0

Robert Bosch GmbH operates the bosch.us website as a mature, enterprise-level digital presence focused on delivering comprehensive product and service information across multiple sectors including mobility, consumer goods, and energy solutions. The website targets both consumers and business clients in the USA, providing detailed navigation, corporate information, and career opportunities. Technically, the site uses a custom Bosch CMS with integrations for privacy management and analytics, hosted on Azure infrastructure. While the site is well-designed, mobile-optimized, and SEO-friendly, it suffers from a critical security issue: the SSL certificate is invalid and no TLS protocols are enabled, severely impacting the security posture. Privacy compliance is strong with clear policies and consent mechanisms. Overall, the site reflects a professional and trustworthy corporate brand but requires urgent remediation of its SSL/TLS configuration to ensure secure user interactions.

The website jiricisar.cz currently serves as a minimal placeholder with extremely limited content, consisting solely of the domain name text. There is no metadata, no structured data, no contact information, and no visible business or security policies. The domain is registered and DNS records indicate hosting with svethostingu.cz, but the site lacks a valid SSL certificate and does not support HTTPS, which is a critical security deficiency. Performance is poor despite minimal content, and no modern web technologies or analytics are detected. Overall, the site appears to be either under construction or abandoned, with very low digital maturity and security posture. This presents a risk for visitors and undermines trust and credibility.

CERATIZIT S.A. is a leading high-technology engineering group specializing in cutting tools and hard material solutions, serving industrial and manufacturing sectors globally. The company is part of the Plansee Group and maintains a strong market position supported by innovation, patents, and sustainability certifications such as the EcoVadis Gold Rating. The website reflects a professional and well-branded digital presence with comprehensive content and multilingual support. Technically, the site uses modern frameworks including Next.js and Adobe Experience Manager, supported by Akamai CDN for content delivery. However, the security posture is currently weak due to the absence of a valid SSL certificate and HTTPS support, exposing the site to potential risks. Privacy and legal compliance are well addressed with clear policies and consent mechanisms. Overall, CERATIZIT demonstrates strong business credibility and digital maturity but requires urgent improvements in SSL/TLS security to protect users and enhance trust.

Security assessment incomplete. Successfully analyzed: emailSecurity, sslTls, dnsHealth, networkSecurity. Failed to analyze: securityHeaders, gdpr, nis2. 7 security issues were identified in the completed modules. The website may be inaccessible or protected by security measures. Please retry the scan or verify website accessibility.

I

ISG - International Service Group

isg.com

0

ISG - International Service Group is a well-established HR consulting company founded in 1999, specializing in recruiting, executive search, training, and personnel management services. With over 800 employees and more than 60 offices worldwide, ISG holds a strong market position as a leading personnel consulting provider in Europe and beyond. Their business model focuses on delivering tailored HR solutions across multiple industries including automotive, finance, technology, and healthcare. The website content is professionally presented, targeting businesses seeking comprehensive HR services internationally. Technically, the website is built on WordPress with modern plugins such as Gravity Forms and uses LiteSpeed Cache for performance optimization. However, the site currently lacks a valid SSL certificate and does not support modern TLS protocols, which significantly impacts its security posture. The site includes a cookie consent mechanism and privacy policy, indicating awareness of privacy compliance, but lacks explicit security or incident response policies. From a security perspective, the absence of HTTPS and modern encryption protocols is a critical vulnerability that exposes users to risks. While some security headers like HSTS are present, the overall SSL/TLS configuration is poor. There are no detected vulnerabilities related to common exploits, but the lack of encryption is a major concern. WHOIS data confirms the legitimacy and consistency of the domain registration with the business claims. Overall, ISG's website demonstrates strong business credibility and content quality but requires urgent security improvements to protect user data and enhance trust. Strategic recommendations include immediate installation of a valid SSL certificate, enabling modern TLS protocols, and implementing additional security headers and policies to improve the security posture and compliance.

M

Melecs EWS GmbH

melecs.com

0

Melecs EWS GmbH is a well-established electronics manufacturing services (EMS) provider headquartered in Austria with over 25 years of industry experience. The company offers comprehensive services ranging from electronics development, validation, industrialization, production, to logistics, serving multiple sectors including automotive, home appliances, intralogistics, and industrial electronics. Their global production footprint and strong customer focus position them as a reliable partner in the EMS market. The website is professionally designed, content-rich, and targets industrial clients seeking end-to-end EMS solutions. Technically, the site is built on WordPress with Elementor and uses Cloudflare for hosting and CDN services. However, the site currently lacks a valid SSL certificate and does not serve content over HTTPS, which is a significant security concern. Privacy compliance is well addressed with GDPR-compliant policies and cookie consent mechanisms. Contact information is clearly presented, including email, phone, physical address, and a contact form. Overall, the business credibility and website professionalism are high, but the security posture requires urgent improvement to protect user data and enhance trust.

H

Hillrom

hill-rom.com

0

Hillrom is a leading medical technology provider specializing in healthcare equipment and connected care solutions for hospitals and healthcare providers globally. The company offers a wide range of products including smart beds, patient monitoring devices, care communication systems, and surgical equipment. With a strong enterprise presence and integration with Baxter International, Hillrom positions itself as a key player in advancing connected care. The website reflects a professional and comprehensive digital presence with multiple localized versions and extensive product and service information. Technically, the site is built on Adobe Experience Manager and leverages modern technologies such as Adobe Launch and Google Tag Manager, hosted behind Cloudflare for performance and security. However, the SSL/TLS configuration is currently deficient with an invalid certificate and no enabled TLS protocols, which poses a significant security risk. Privacy and compliance policies are well documented, indicating a mature approach to data protection and regulatory adherence. Overall, the site is trustworthy and professional but requires urgent remediation of SSL issues to improve security posture and user trust.

O

Octapharma Handelsges.m.b.H.

octapharma.at

0

Octapharma Handelsges.m.b.H. is a large, family-owned healthcare company based in Austria, specializing in plasma-derived medicines and therapies for rare diseases such as hemophilia, immunology, and intensive care. The company operates globally with a strong market position and offers patient support, career opportunities, and healthcare services. The website is built on modern technologies including Next.js and React, hosted on AWS infrastructure, and managed via the Storyblok CMS. It features comprehensive privacy and cookie policies with a consent mechanism powered by Usercentrics. However, the website currently lacks a valid SSL certificate and does not support HTTPS, which is a critical security concern. Security headers are partially implemented but the absence of TLS protocols and HSTS reduces the overall security posture. Contact information is primarily available via contact forms, with no explicit phone numbers or emails prominently displayed except for a support email related to internal server error reporting. Social media presence is active on LinkedIn, YouTube, and Kununu. Overall, the website is professional, content-rich, and user-friendly but requires urgent improvements in SSL/TLS configuration to ensure secure user interactions.

I

incadea GmbH

incadea.com

0

incadea GmbH is a well-established German company founded in 2000, specializing in innovative cloud-based software solutions for the automotive retail and wholesale sectors. The company supports over 4,000 dealerships globally, leveraging Microsoft Dynamics 365 Business Central and maintaining strong partnerships with leading OEMs and Microsoft. Their offerings include dealer management systems for passenger cars and commercial vehicles, importer management solutions, and professional services such as consultancy and training. Technically, the website is built on Umbraco CMS with modern JavaScript libraries like jQuery and Swiper.js, hosted on Azure DNS infrastructure. However, the site suffers from a critical security shortfall due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy and cookie policies are present with consent mechanisms, reflecting GDPR compliance efforts. Overall, the website demonstrates good content quality and business credibility but requires urgent security improvements to protect user data and enhance trust.

IVM Technical Consultants is a well-established Austrian consulting firm specializing in engineering and HR services for IT, electronics, mechanical engineering, and automation sectors. Founded in 1979, the company operates multiple locations with over 200 consultants and holds a strong market position supported by industry awards and a professional online presence. The website is built on WordPress with modern SEO tools and social media integration, reflecting a mature digital infrastructure. However, the absence of a valid SSL certificate and HTTPS support represents a critical security vulnerability that undermines user trust and data protection. While security headers are properly configured, the lack of TLS protocols and cipher suites is a significant risk. Privacy compliance is partially addressed with a comprehensive privacy policy but lacks cookie consent mechanisms. Overall, the business credibility and website quality are high, but urgent remediation of SSL issues is recommended to improve security posture and compliance.

M

MedAustron

medaustron.at

0

MedAustron is a specialized healthcare and research center based in Austria, focusing on advanced ion therapy for cancer treatment using proton and carbon ion technologies. The organization serves patients, medical professionals, and students, positioning itself as one of the few global providers of this innovative therapy. The website is professionally designed, multilingual, and provides comprehensive information about services, patient care, and research activities. Technically, the site runs on WordPress with common plugins and demonstrates good SEO and user experience, though performance metrics are unavailable. Security posture is weak due to the absence of HTTPS, no valid SSL certificate, and missing advanced security headers, which poses a critical risk. Privacy compliance is strong with a clear privacy policy and cookie consent mechanism. Contact information is transparent and complete, enhancing business credibility. Overall, the site is trustworthy but requires urgent security improvements to protect user data and improve trust.

C

Celerion

celerion.com

0

Celerion is a well-established clinical research organization specializing in translational medicine and early drug development services. The company offers a broad range of clinical research solutions, bioanalytical sciences, and regulatory affairs support, targeting pharmaceutical and biotech companies globally. Their website reflects a mature business with consistent branding, good content quality, and a clear focus on their specialized healthcare sector. Technically, the site is built on WordPress and hosted on Pantheon, utilizing modern marketing and analytics tools such as Google Tag Manager, Pardot, and LinkedIn Insight Tag. However, the website suffers from a critical security deficiency due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the security posture and trustworthiness of the site. Privacy and cookie policies are present with consent mechanisms, but no explicit security or incident response policies are found. WHOIS data confirms the domain's legitimacy and consistency with the business claims. Overall, while the business and content quality are strong, the lack of proper SSL/TLS security is a major concern that should be addressed promptly.

The website geba.com is currently inaccessible due to a Cloudflare Web Application Firewall (WAF) block page, which prevents access to any actual site content. The page presented is a security challenge indicating the visitor has been blocked, likely due to triggering security rules. No business or contact information, privacy or cookie policies, or terms of service are available for review. The technical infrastructure relies on Cloudflare for security and hosting, with DNS records indicating integration with Microsoft Outlook for email services. However, the site lacks a valid SSL certificate and does not support modern TLS protocols, which is a critical security deficiency. The absence of HSTS and other advanced security headers further weakens the security posture. Overall, the site’s security configuration is basic and incomplete, and the user experience is poor due to the block. The domain registration appears consistent but lacks detailed registrant information for deeper trust analysis.

B

Borealis GmbH

borealisgroup.com

0

Borealis GmbH is a leading global provider of advanced and sustainable polyolefin and base chemical solutions, with a strong focus on innovation and circular economy principles. Operating in over 120 countries and headquartered in Vienna, Austria, the company employs approximately 6,000 people and reported a net profit of EUR 2.1 billion in 2022. Their business model centers on manufacturing and supplying high-quality polymer products and base chemicals to diverse industries including energy, consumer products, mobility, healthcare, and infrastructure. Technically, the website employs modern JavaScript libraries such as jQuery, Algolia Search, and Visual Website Optimizer, and is hosted on Amazon CloudFront CDN, indicating a mature digital infrastructure. The site is well-structured with comprehensive metadata and SEO optimizations, providing a good user experience and mobile responsiveness. However, performance metrics are not available. From a security perspective, the site has several security headers implemented, but critically lacks a valid SSL certificate and proper HTTPS configuration, exposing it to significant risks. TLS protocols are disabled, and advanced security features like OCSP stapling and session resumption are missing. Privacy and compliance policies are well documented, including GDPR-compliant privacy and cookie policies, terms of service, and a responsible disclosure policy. Overall, while the business credibility and content quality are high, the lack of HTTPS and SSL is a critical vulnerability that severely impacts the security posture and overall risk profile. Strategic remediation of SSL/TLS issues is urgently recommended to protect user data and maintain trust.

C

Cumulo IT Solutions GmbH

cumulo.at

0

Cumulo IT Solutions GmbH is a specialized IT consulting firm based in Linz, Austria, founded in 2011. The company focuses on network infrastructure, identity and access management, WLAN solutions, and managed IT services targeting businesses, universities, and other institutions. Their market position is that of a trusted expert provider with a strong emphasis on quality and customer satisfaction, supported by certifications and client testimonials. Technically, the website is built on a modern WordPress platform with WooCommerce and Divi theme, integrating analytics and GDPR compliance tools. However, the lack of a valid SSL certificate and HTTPS implementation is a critical security weakness that undermines the overall security posture. Privacy policies and cookie consent mechanisms are well implemented, reflecting good compliance with GDPR. Overall, the business demonstrates strong credibility and professionalism but must urgently address its SSL/TLS security to improve trust and security.

W

Walter Bösch GmbH & Co. KG

boesch.at

0

Walter Bösch GmbH & Co. KG operates a comprehensive website focused on heating, cooling, ventilation, and building automation solutions, primarily serving the Austrian market. The company positions itself as a leading provider with extensive 24/7 customer service and a broad portfolio of products and services. The website is well-structured, professionally designed, and provides rich content including customer references and detailed product information. Technically, the site uses modern technologies such as Pimcore CMS, Bootstrap framework, and service workers for enhanced user experience. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, which significantly impacts the site's security posture. Privacy compliance is well addressed with clear privacy and cookie policies and consent mechanisms. Overall, the site demonstrates strong business credibility and digital maturity but requires urgent security improvements to protect user data and enhance trust.

A

Atempo

atempo.com

0

Atempo is a mature technology company founded in 1997 specializing in data management solutions for mid-sized and corporate organizations globally. Their offerings include data protection, migration, archiving, and endpoint/server protection, targeting industries such as banking, life sciences, research, and media. The website is built on WordPress with modern plugins and technologies, hosted on OVHcloud, but lacks HTTPS which is a critical security gap. Privacy and cookie policies are comprehensive and GDPR compliant with active consent management. The security posture is weak due to missing SSL/TLS and security headers, exposing users to risks. Business credibility is supported by customer testimonials, case studies, and active social media presence. Overall, the site is professional and content-rich but requires urgent security improvements.

ReSound Brazil, operated under the global GN Hearing A/S brand, specializes in manufacturing and retailing advanced hearing aids and wireless accessories. The website targets Brazilian consumers and hearing professionals, offering product information, support, and professional services. The company is well-established with a history dating back to 1943 and maintains a strong market position in the healthcare sector. Technically, the website employs modern web technologies including Google Tag Manager and Cookiebot for analytics and consent management, hosted likely on Microsoft Azure infrastructure. However, a critical security gap exists due to the absence of a valid SSL certificate and HTTPS support, exposing users to potential risks. Privacy and cookie policies are comprehensive and GDPR compliant, enhancing user trust. Overall, the site is professional and user-friendly but requires urgent security improvements to protect user data and maintain credibility.

The website unify.com is currently inaccessible due to a Cloudflare security challenge page that requires JavaScript and cookies to proceed. This prevents access to any meaningful content or business information on the site. The domain itself is mature, registered since 1990, and managed by a reputable registrar with basic domain protection. However, the lack of a valid SSL/TLS certificate and absence of HTTPS severely impacts the security posture of the site. The technical infrastructure shows Cloudflare as the hosting provider, but no modern TLS protocols or session resumption features are enabled. No privacy, cookie, or terms of service policies are detectable, and no contact or business information is available from the accessible content. Overall, the site’s security and privacy compliance are poor, and the user experience is blocked by the WAF challenge, limiting trust and usability.

A

Applied Chemicals International AG

acat.com

0

Applied Chemicals International AG operates as a medium-sized international chemical supplier specializing in innovative chemical products and technologies for wastewater treatment, paper production, and specialty industrial chemicals. The company maintains multiple offices across Europe and Africa, serving industrial clients with a B2B business model. Their website is professionally designed, multilingual, and optimized for SEO, reflecting a mature digital presence. However, the absence of a valid SSL certificate and HTTPS support significantly undermines their security posture. While security headers and content security policies are implemented, they are weakened by permissive settings and lack of modern TLS protocols. Privacy compliance is addressed with clear privacy and cookie policies, and contact information is readily available. Overall, the company presents a credible business front but must urgently address critical security gaps to protect user data and maintain trust.