Coles Group

coles.com.au

Retail

Security Score

58/100

Poor security posture. Critical issues require immediate attention. 1 critical issue found. 2 high severity issues found. Areas needing attention: tls.

Scanned 5 days ago

Is this your business?

Claim this page to get detailed reports, request re-scans, and manage your profile.

Invalid SSL certificate

CRITICAL

TLS

The SSL certificate is not trusted or has validation issues.

Recommendation: Install a valid SSL certificate from a trusted CA.

Outdated TLS protocol

HIGH

TLS

The server does not support TLS 1.2 or 1.3.

Recommendation: Enable TLS 1.2 and TLS 1.3 support.

Could not retrieve headers

HIGH

HEADERS

Failed to fetch the website: Request timeout

Recommendation: Ensure the website is accessible.

Missing HSTS header

MEDIUM

TLS

HTTP Strict Transport Security is not enabled.

Recommendation: Add the Strict-Transport-Security header to enforce HTTPS.

No security.txt found

LOW

FILES

No security.txt file was found. This file helps security researchers contact you.

Recommendation: Add a security.txt file at /.well-known/security.txt per RFC 9116.

Email authentication configured

INFO

DNS

SPF, DMARC, and DKIM are all configured for this domain.

No robots.txt found

INFO

FILES

No robots.txt file was found at the root.

Recommendation: Consider adding a robots.txt file to control crawler behavior.