SSL Verification Bypassed
The server's SSL certificate could not be verified. The analysis was completed using insecure mode. Data may be less reliable.
Reason:
Hostname Mismatch - certificate is issued for *.getpantheon.com, *.gotpantheon.com, *.pantheon.io, *.pantheonsite.io, getpantheon.com, gotpantheon.com, pantheonsite.io, not for www.duphalac.com.vn
Open
Cached
·
just now
75/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Illinois, O=Abbott Laboratories, CN=abbottcoronavirustesting.com
Issuer
C=GB, O=Sectigo Limited, CN=Sectigo Public Server Authentication CA OV R36
Valid From
January 13, 2026
Valid Until
January 13, 2027
345 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
B9:96:C8:DA:FF:2A:19:D8:9F:58:C1:5B:8C:D4:EF:97:31:B4:1C:23:14:A5:5B:6C:C8:86:2B:ED:5C:02:B3:75
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Missing
Not configured
Content-Security-Policy
Missing
Not configured
X-Frame-Options
Missing
Not configured
X-Content-Type-Options
Missing
Not configured
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Add Strict-Transport-Security header with max-age of at least 1 year
- • Add Content-Security-Policy header to prevent XSS attacks
- • Add X-Frame-Options: DENY or SAMEORIGIN to prevent clickjacking
- • Add X-Content-Type-Options: nosniff
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
91 domains
cg210.com.vn
duphalac.com.vn
abbott-laboratories.si
abbottattct.com
abbottcoronavirustesting.com
abbottcovid19testing.com
abbottdbsinfo.com
abbotte-store.com
abbottemployeesgive.com
abbottestore.com
abbottfamily.sg
abbottfund.org
abbottgen.com
abbottharmony.com
abbotthumanresources.com
www.abbotthumanresources.com
abbottitalia.com
www.abbottitalia.com
abbottlearningcenter.com
abbottnutritionstore.com
abbottpakistan.com
abbottparkinsons.com
abbottphysiology.com
abbottpromostore.com
abbottvascular.com
abbottvascular.jp
abbottventures.com
abbottvesselclosure.com
abbottwholehearted.com
absorb.com
absorbcommunicationskit.com
absorbdata.com
absorbgt1.com
absorbmediakit.com
acare.com.co
acare.eg
acare.hk
acare.mx
www.acare.mx
acare.my
acare.ph
adcdigitalstyle.com
afanswers.com
alimentumstore.com
antibodytesting.abbott
arabia.abbott
aus.abbott
australia.abbott
austria.abbott
binaxnow-navica.abbott
bioticaps.cl
buysimilac.com
ca.abbott
canada.abbott
cardiovascular.abbott
carotidmediakit.com
ces.abbott
cg210thailand.com
cgmforall.com
cgmforall.us
ch.abbott
acare.co.in
abbottmama.co.kr
acare.co.th
duphalac.com.hk
cg210.com.my
a-care.com.tw
dayamineral.com.uy
committed2pad.abbott
committedtothecase.abbott
complexpciwires.com
connect.corelaboratory.abbott
coronavirus.abbott
coronavirusabbott.com
cz.abbott
de.abbott
deutschland.abbott
diabetescare.abbott
dissolvingscaffold.com
duphalac.com
duphaston.com
eascertified.com
easstore.com
egypt.abbott
eifu.abbott
einfach-zuckermessen.de
einfachzuckermessen.de
elecarestore.com
ensure.com.co
ensure.com.mx
pe.abbott
Other domains in certificate