Open
Cached
·
4h ago
86/100
SECURITY SCORE
Certificate Information
Subject
C=US, ST=Illinois, O=Abbott Laboratories, CN=freestyle-akademie.info
Issuer
C=GB, ST=Greater Manchester, L=Salford, O=Sectigo Limited, CN=Sectigo RSA Organization Validation Secure Server CA
Valid From
February 10, 2025
Valid Until
February 10, 2026
45 days
Public Key
RSA
2048 bit
Adequate
Signature Algorithm
SHA256-RSA
SHA-256 Fingerprint
7E:03:FD:94:FF:ED:F4:F9:74:85:B1:55:AA:F6:D8:26:FC:FF:D7:3D:26:9E:66:3A:CC:0A:56:30:F4:D8:CC:A9
Alternative Names
Security Configuration
TLS Protocols
TLS 1.2
TLS 1.3
Forward Secrecy
Supported
(Modern clients use PFS)
HTTP Security Headers
Status
Strict-Transport-Security
Present
max-age=2592000; includeSubDomains; preload;
Content-Security-Policy
Basic
font-src; form-action; frame-ancestors; +11 more
font-src fonts.gstatic.com use.typekit.net *.typekit.net *.gstatic.com consent.trustarc.com *.onetrust.com https://privacyportal-uat-cdn.onetrust.com https://app-eu.onetrust.com https://privacyportal-eu-cdn.onetrust.com https://uat.onetrust.com https://privacyportal-eu.onetrust.com https://xiecomm.worldpay.com cert-xiecomm.paymetric.com https://xipayapi.worldpay.com https://cert-xipayapi.paymetric.com xiecomm.paymetric.com https://cert-xipayapi.worldpay.com https://app.five9.com data: 'self' 'unsafe-inline'; form-action geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com pilot-payflowlink.paypal.com www.paypal.com www.sandbox.paypal.com *.paypal.com *.e-abbott.com *.mbo.e-abbott.com *.microsoftonline.com https://dev2.mbo.e-abbott.com/admin/sso/login/start https://dev.mbo.e-abbott.com/admin/sso/login/start/ https://staging-bo.e-abbott.com/admin/sso/login/start/ https://mbo.e-abbott.com/admin/sso/login/start/ https://cert-xipayapi.paymetric.com https://app-eu.onetrust.com https://xiecomm.paymetric.com https://consent-pref.trustarc.com https://uat.onetrust.com https://privacyportal-eu-cdn.onetrust.com *.onetrust.com privacyportal-uat-cdn.onetrust.com https://privacyportaluat.onetrust.com https://privacyportal-eu.onetrust.com https://xiecomm.worldpay.com cert-xiecomm.paymetric.com https://xipayapi.worldpay.com https://cert-xipayapi.worldpay.com xiecomm.paymetric.com 'self' 'unsafe-inline'; frame-ancestors *.google.com 'self'; frame-src fast.amc.demdex.net *.adobe.com geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com bid.g.doubleclick.net *.youtube.com *.youtube-nocookie.com www.paypal.com www.sandbox.paypal.com pilot-payflowlink.paypal.com player.vimeo.com https://www.google.com/recaptcha/ *.braintreegateway.com *.paypal.com google.com *.google.com www.googletagmanager.com https://cert-xiecomm.paymetric.com https://xiecomm.paymetric.com https://cert-xiecomm.worldpay.com https://xiecomm.worldpay.com https://privacyportaluat.onetrust.com https://consent-pref.trustarc.com/ *.trustarc.com https://app-eu.onetrust.com https://uat.onetrust.com https://privacyportal-eu-cdn.onetrust.com privacyportal-uat-cdn.onetrust.com https://privacyportal-eu.onetrust.com xiecomm.paymetric.com *.onetrust.com https://cert-xipayapi.paymetric.com cert-xiecomm.paymetric.com https://cert-xipayapi.worldpay.com https://app.five9.com 'self' 'unsafe-inline'; img-src assets.adobedtm.com amcglobal.sc.omtrdc.net dpm.demdex.net cm.everesttech.net *.adobe.com widgets.magentocommerce.com data: www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net www.google.com bid.g.doubleclick.net analytics.google.com www.googletagmanager.com t.paypal.com www.paypal.com www.paypalobjects.com fpdbs.paypal.com fpdbs.sandbox.paypal.com *.vimeocdn.com i.ytimg.com *.youtube.com p.typekit.net *.paypal.com *.typekit.net *.gstatic.com validator.swagger.io https://app.five9.com *.e-abbott.com https://consent.truste.com/ https://www.googletagmanager.com *.mbo.e-abbott.com https://consent-pref.trustarc.com *.trustarc.com/ data: 'self' 'unsafe-inline'; script-src assets.adobedtm.com *.adobe.com geostag.cardinalcommerce.com 1eafstag.cardinalcommerce.com geoapi.cardinalcommerce.com 1eafapi.cardinalcommerce.com songbird.cardinalcommerce.com includestest.ccdc02.com www.googleadservices.com www.google-analytics.com googleads.g.doubleclick.net analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net *.commerce-payment-services.com www.paypal.com www.sandbox.paypal.com www.paypalobjects.com t.paypal.com s.ytimg.com www.googleapis.com vimeo.com www.vimeo.com *.vimeocdn.com *.youtube.com https://www.gstatic.com/recaptcha/ https://www.google.com/recaptcha/ amcglobal.sc.omtrdc.net *.magento-ds.com use.typekit.net *.typekit.net google.com *.google.com *.cdn-apple.com *.braintreegateway.com https://cdn.walkme.com https://app.five9.com https://consent.trustarc.com https://xiecomm.paymetric.com https://cert-xiecomm.paymetric.com https://xiecomm.worldpay.com https://cert-xiecomm.worldpay.com https://cert-xipayapi.paymetric.com https://cert-xipayapi.worldpay.com https://xipayapi.worldpay.com *.e-abbott.com https://privacyportal-uat-cdn.onetrust.com *.mbo.e-abbott.com https://staging-bo.e-abbott.com consent-reporting.trustarc.com https://app-eu.onetrust.com https://uat.onetrust.com https://privacyportal-eu-cdn.onetrust.com *.onetrust.com https://privacyportaluat.onetrust.com 'self' 'unsafe-inline' 'unsafe-eval'; style-src *.adobe.com fonts.googleapis.com https://app.five9.com https://cert-xiecomm.paymetric.com https://cert-xiecomm.worldpay.com *.e-abbott.com *.mbo.e-abbott.com https://staging-bo.e-abbott.com https://privacyportal-uat-cdn.onetrust.com *.onetrust.com *.trustarc.com https://app-eu.onetrust.com https://privacyportal-eu-cdn.onetrust.com https://xiecomm.worldpay.com https://xipayapi.worldpay.com https://cert-xipayapi.worldpay.com xiecomm.paymetric.com 'self' 'unsafe-inline'; object-src 'self' 'unsafe-inline'; media-src *.adobe.com 'self' 'unsafe-inline'; manifest-src 'self' 'unsafe-inline'; connect-src dpm.demdex.net amcglobal.sc.omtrdc.net geostag.cardinalcommerce.com geo.cardinalcommerce.com 1eafstag.cardinalcommerce.com 1eaf.cardinalcommerce.com centinelapistag.cardinalcommerce.com centinelapi.cardinalcommerce.com www.google-analytics.com www.googleadservices.com analytics.google.com www.googletagmanager.com *.newrelic.com *.nr-data.net vimeo.com www.sandbox.paypal.com www.paypalobjects.com www.paypal.com pilot-payflowlink.paypal.com *.adobe.io performance.typekit.net *.sentry.io *.paypal.com google.com *.google.com *.braintreegateway.com *.braintree-api.com https://consent-reporting.trustarc.com *.trustarc.com https://privacyportaluat.onetrust.com *.onetrust.com https://app-eu.onetrust.com https://privacyportal-eu-cdn.onetrust.com https://privacyportal-eu.onetrust.com https://uat.onetrust.com 'self' 'unsafe-inline'; child-src http: https: blob: 'self' 'unsafe-inline'; default-src https://privacyportal-eu.onetrust.com www.google-analytics.com https://consent.trustarc.com https://privacyportal-uat-cdn.onetrust.com https://app-eu.onetrust.com https://uat.onetrust.com https://privacyportal-eu-cdn.onetrust.com *.onetrust.com https://privacyportaluat.onetrust.com 'self' 'unsafe-inline' 'unsafe-eval'; base-uri 'self' 'unsafe-inline';
X-Frame-Options
Good
SAMEORIGIN
X-Content-Type-Options
Good
nosniff
Referrer-Policy
Missing
Not configured
Permissions-Policy
Missing
Not configured
Recommendations
- • Increase HSTS max-age to at least 1 year and add includeSubDomains
- • Improve CSP by adding more specific directives and removing 'unsafe-inline'
- • Add Referrer-Policy header (recommended: strict-origin-when-cross-origin)
- • Consider adding Permissions-Policy to control browser features
CAA Records (Certificate Authority Authorization)
CAA Records
Not Configured
(Any CA can issue certificates)
CAA Issues
- • No CAA records configured - any CA can issue certificates
Recommendations
- • Implement CAA records to restrict which CAs can issue certificates for your domain
- • This adds an extra layer of security against unauthorized certificate issuance
- • Example: Add CAA record 'example.com. CAA 0 issue "letsencrypt.org"'
- • Consider adding 'iodef' record to receive security incident reports
Subject Alternative Names
106 domains
e-abbott.com
abbot.ch
cloud.neuroemail.abbott.com
empathy.abbott.com
abbottaphrs.com
abbottatcirse.com
distributors.abbottdiagnostics.com
abbotthrs.com
abbotticfellows.com
abbottiradfellows.com
abbottlahrs.com
abbottnutrition.com
abbottvascsurgeryfellows.com
afinionmarketingtoolkit.com
alerecoag.com
aleretoxicology.se
at.abbott
binaxnow.abbott
cgmsubsidy.com.au
checkmyglucose.com.au
clear.abbott
cliniclocatoradmin.abbott
ensure.co.th
freestylelibre.com.my
freestylelibre.com.ph
glucerna.com.ph
freestylelibre.com.tw
ensure.com.vn
pediasure.com.vn
similac.com.vn
comenzarfreestyle.us
coracaoemfa.com
diagnosticsportal.abbott
pages.ensure.abbott
ensure.com.au
family.abbott
freestyle-akademie.com
freestyle-akademie.info
freestyle-akademie.online
freestyleacademy.online
freestyleakademie.com
freestyleakademie.info
freestyleakademie.online
freestylelibre.de
freestylelibre.ie
freestylelibre.ph
freestylelibre.si
freestylelibre.sk
freestylelibre.tw
trycgmsamples-provider.freestylelibre.us
freestylelibre3.au
freestylelibre3.com.au
freestylelibre3.us
freestylelibreespanol.us
freestylerx.us
getfreestyle.abbott
getrx.abbott
getstarted.abbott
binaxnoweme.globalpointofcare.abbott
digivaleme.globalpointofcare.abbott
globalpointofcare.abbott
glucerna.com.au
gpoc.abbott
hellolingo.com
hivtestcheck.abbott
idnowconsumer.abbott
idnowlocator.abbott
jeti.tv
knowtocheck.com.au
letschangeperspective.abbott
medical.abbott
mifreestylelibre.us
myfreestylemoments.com.au
binaxnow.navica.abbott
nic.abbott
nutritionrecycle.com
pad-info.com
painassessment.abbott
pointofcare.abbott
power-of-yes.abbott
powerofyes.abbott
proconnect.abbott
rapidinsights.abbott
recycle.abbott
rx.abbott
selftest.abbott
dev.nic.services.abbott
dev2.nic.services.abbott
nic.services.abbott
similacproductcheck.com
patents.sjm.com
startcgm.abbott
startmycgm.com.au
startmysensor.com.au
starttocheck.com.au
t1subsidy.com.au
t1subsidyassist.com.au
t1subsidyhelp.com.au
toxicology.abbott
tryfreestylelibre.sg
type1subsidy.com.au
typeonesubsidy.com.au
univants.com
univantshce.com
eifu.vascular.abbott
vascularmedednow.abbott
Other domains in certificate