ParaFlare provides cybersecurity services and solutions. The company focuses on threat detection, incident response, and security consulting for organizations seeking to protect their digital assets and infrastructure. UpGuard continuously monitors the security posture of Deloitte using open-source, commercial, and proprietary threat intelligence feeds. Our analysis is centered on objective, externally verifiable information.
Deloitte's security rating is based on the analysis of their external attack surface. The higher the rating, the better their security posture. Start a free trial to get a more in-depth risk assessment for Deloitte.
Last updated July 12, 2026
This vendor risk report is based on UpGuard's continuous monitoring of Deloitte's security posture using open-source, commercial, and proprietary threat intelligence feeds. The results are summarized into a security rating based on the analysis of hundreds of individual checks across five risk categories: website security, email security, phishing & malware, brand & reputation risk, and network security.
Ensuring the server information header is not exposed reduces the ability of attackers to exploit certain vulnerabilities.
Information about specific technology used on the server is obscured.
The website's Referrer Policy is not configured to allow unsafe information to be sent in the referrer header.
Ensuring the ASP.NET version header is not exposing a specific version makes it harder for attackers to exploit certain vulnerabilities.
Ensuring the ASP.NET version header is not exposed makes it harder for attackers to exploit certain vulnerabilities.
The page appears to be maintained.
The DMARC policy should be set to p=reject for maximum protection.
DMARC protects against fraudulent emails being sent from a domain.
Sender Policy Framework (SPF) record strictly enforces specific domains allowed to send email on its behalf.
Sender Policy Framework (SPF) record passes basic syntax checks.
DMARC policy percentage is set to default 100%, ensuring all mail is covered by the policy.
Sender Policy Framework (SPF) record does not include the ptr mechanism.
The 'HTTP' service is running and exposed to the internet. The configuration of the server should be reviewed and unnecessary ports closed.
No unregistered MX records that could lead to receiving mail on behalf of the target organization were detected.
Domain has not expired.
Domain does not expire within 30 days.
DNSSEC records prevent third parties from forging the records that guarantee a domain's identity.
Domain is not flagged as inactive.
Domain is not pending deletion with the registrar.
Domain is not pending restoration with the registrar.
Domain is protected from unsolicited transfer requests.
Domain is not under a DNS resolution hold with the registrar.
Domain is not under a DNS resolution hold with the registry itself.
Domain is not prohibited from renewal at the registry itself.
HTTPS is the standard protocol for secure communication on the internet. All redirects should be performed over HTTPS.
All HTTP requests are redirected to HTTPS.
This IP/domain has not been reported as a source of botnet activity in the last 30 days.
This IP/domain did not appear on any list of IPs and domains known to perform brute force login attempts in the last 30 days.
This IP/domain has been reported for distributing malware in the last 30 days.
This IP/domain has not been reported for performing unsolicited scanning in the last 30 days.
This IP/domain has not been reported as a phishing site in the last 30 days.
This IP/domain has not been reported as a source of botnet activity in the last 90 days.
This IP/domain did not appear on any list of IPs and domains known to perform brute force login attempts in the last 90 days.
This IP/domain has been reported for distributing malware in the last 90 days.
This IP/domain has not been reported for performing unsolicited scanning in the last 90 days.
This IP/domain has not been reported as a phishing site in the last 90 days.
Compare Deloitte's security performance with other companies in their industry.
Motorola Solutions manufactures and provides mission-critical communication systems, video security technology, and software solutions for public safety agencies, government organizations, and commercial enterprises. The company's product portfolio includes two-way radios, body cameras, command center software, video surveillance systems, and access control technology designed to operate in demanding environments.
Canva operates an online graphic design platform that enables users to create visual content including presentations, social media graphics, posters, and documents. The platform provides templates, design tools, and a library of images and fonts accessible through a web browser and mobile applications.
Salesforce provides cloud-based customer relationship management (CRM) software and applications that help businesses manage sales, customer service, marketing, commerce, and data operations. The company offers AI-powered tools and autonomous agents that automate workflows, analyze customer data, and enable teams across different departments to collaborate on a unified platform.
BlackRock operates as a global investment management firm providing asset management services, exchange-traded funds (ETFs), and financial technology solutions. The company offers a range of investment products including iShares ETFs, managed funds, and model portfolios across equity, fixed income, and alternative asset classes for retail and institutional clients.
PayPal operates a digital payments platform that enables individuals and businesses to send and receive money online. The company provides payment processing services for e-commerce transactions, peer-to-peer money transfers, and installment payment options for purchases.
Stripe provides financial infrastructure and payment processing services for businesses of all sizes to accept online and in-person payments. The company offers tools for managing subscriptions, billing models, fraud prevention, money movement, and embedded financial services through APIs and integrations.
The ultimate guide to attack surface and third-party risk management – actionable advice for security teams, managers, and executives.
Security research and global news about data breaches.
Explore resourcesArticles, news, and research on third-party risk management.
Explore resourcesArticles, news, and research on attack surface management.
Explore resourcesArticles, news, and research on cybersecurity.
Explore resources