Eek! I wouldn't trust them with my data if I was a bank. They haven't updated their server since 2013. All of the versions listed in that header have major vulns. This is a disaster waiting to happen.
They really have no clue what they are doing... No security headers and their SSL is insecure. Someone needs to tell them to shut their servers down right now.
Directly from their website:
"Patrick Brown - Chief Technology Officer. Mr. Brown is the co-founder of Eye Candy Creative, a highly successful technology and marketing company."
So their CTO is a marketing guy. No wonder they suck.
Yikes, Qualys SSL Labs gives them a grade of C. They may be vulnerable to a POODLE attack. They probably should disable SSL 3 support to protect their customers.
Not an expert but I don't think it's considered good practice to expose your directory structure like that. It should have been 404 or redirection to /home.
Eek! I wouldn't trust them with my data if I was a bank. They haven't updated their server since 2013. All of the versions listed in that header have major vulns. This is a disaster waiting to happen.