Is clickpass.com safe to use as a vendor?

clickpass.com scored 52/100 on LynxRadar's security posture assessment. The domain has significant security gaps that should be addressed. 3 checks passed, 2 warnings, 1 critical issues across 8 passive checks including TLS, DMARC, security headers, breaches, and CVEs.

Does clickpass.com have security headers configured?

clickpass.com has 0 of 0 recommended security headers. All recommended headers present.

Is clickpass.com's SSL certificate valid?

Issues detected. Issues: Could not retrieve certificate details.

F

52 / 100

clickpass.com

Q: What TLS version does clickpass.com use?

TLS configuration for clickpass.com is not configured. TLS certificate verification failed on www.clickpass.com: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: Hostname mismatch, certificate is not valid for 'www.clickpass.com'. (_ssl.c:1081)

Q: Does clickpass.com have DMARC configured?

Yes. clickpass.com's DMARC policy is set to 'reject'. SPF record: yes. Strengths: DMARC policy set to reject (strongest); SPF record present with hard-fail (-all). Issues: No DKIM records found for common selectors (domain may use custom selectors — this is not a confirmed gap).

Q: Does clickpass.com use HSTS?

No. Could not fetch https://www.clickpass.com — connection failed or timed out.

Q: Does clickpass.com have DNSSEC enabled?

No. Strengths: 6 nameservers configured (a3-64.akam.net., a13-65.akam.net., a1-98.akam.net., a2-64.akam.net.); 1 MX records present; Zone transfers properly restricted. Issues: DNSSEC not configured — DNS responses can be spoofed.

Security report · Scanned February 18, 2026

Checks

8

Passed

3

Warnings

2

Critical

1

AI-Generated Summary

What this means

clickpass.com scored 52/100 and does not meet the minimum security posture threshold. The most critical issue is: Upgrade TLS — deprecated protocol in use. This must be addressed before the vendor can be approved for procurement or data processing activities.

Critical gaps in: TLS Configuration. Positive signals: Known Breaches, DMARC / Email Security, CVE Exposure all passed.

3 action items identified, including 1 critical. The issues are configuration gaps, not architectural problems. A focused remediation effort of 2–5 days could address all findings.

How clickpass.com compares

Grade distribution across 2378 companies we've scanned. clickpass.com scores better than 16% of them.

16th percentile

0 Percentile rank 100

71

A+

22

A

180

A-

181

B+

69

B

333

B-

111

C+

111

C

295

C-

110

D+

92

D

216

D-

587

F

clickpass.com — Grade F (52/100) 2378 companies scanned

Security checks

Each check inspects a different part of clickpass.com's public security setup. Green means healthy, yellow needs attention, red is a problem.

TLS Configuration

TLS certificate verification failed on www.clickpass.com: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: Hostname mismatch, certificate is not valid for 'www.clickpass.com'. (_ssl.c:1081)

Problem

DNS Configuration

Strengths: 6 nameservers configured (a3-64.akam.net., a13-65.akam.net., a1-98.akam.net., a2-64.akam.net.); 1 MX records present; Zone transfers properly restricted. Issues: DNSSEC not configured — DNS responses can be spoofed.

Needs work

Certificate Hygiene

Issues: Could not retrieve certificate details.

Needs work

HSTS Header

Could not fetch https://www.clickpass.com — connection failed or timed out.

Skipped

Security Headers

Could not fetch https://www.clickpass.com — connection failed or timed out.

Skipped

Known Breaches

No known breaches found in public disclosure databases.

Healthy

DMARC / Email Security

Strengths: DMARC policy set to reject (strongest); SPF record present with hard-fail (-all). Issues: No DKIM records found for common selectors (domain may use custom selectors — this is not a confirmed gap).

Healthy

CVE Exposure

No server software versions detected in HTTP response headers. This is good practice (version hiding) but means CVE exposure cannot be assessed from external signals alone.

Healthy

Recommended actions

3 items

Steps to improve clickpass.com's security grade, ranked by impact.

1

Upgrade TLS — deprecated protocol in use

Impact: 1–2 Hours

CRITICAL

clickpass.com is using unknown, which is deprecated and has known vulnerabilities. This is a compliance failure under PCI-DSS, HIPAA, and NIST guidelines. Immediate upgrade to TLS 1.2 minimum (TLS 1.3 preferred) is required.

Compliance impact

PCI-DSS 4.0Req 4.2.1

Strong cryptography for transmission

NIST 800-52r2§3.4

TLS 1.0/1.1 must not be used

HIPAA§164.312(e)

Transmission security

How to fix this

1

Disable TLS 1.0 and 1.1 in your web server configuration

2

Enable TLS 1.2 and 1.3: ssl_protocols TLSv1.2 TLSv1.3

3

Remove weak ciphers: ssl_ciphers 'ECDHE-ECDSA-AES128-GCM-SHA256:...'

4

Verify: openssl s_client -connect clickpass.com:443 -tls1_2

See all recommendations

Enter your work email to unlock the full action plan.

No spam. We only send security-related updates.

Report unlocked.

2

Enable DNSSEC on your domain

Impact: 1–3 Days (Depends On Registrar)

MEDIUM

Without DNSSEC, DNS responses for clickpass.com can be spoofed, potentially redirecting users to malicious sites. This requires coordination with your domain registrar to publish DS records.

Compliance impact

NIST 800-53SC-20

Secure name/address resolution service

How to fix this

1

Check if your DNS provider supports DNSSEC (Cloudflare, Route53, etc.)

2

Enable DNSSEC signing in your DNS provider dashboard

3

Add the DS record to your registrar for .com TLD

4

Verify: dig +dnssec clickpass.com

3

Review certificate configuration

Impact: 1–2 Hours

LOW

Certificate issues found for clickpass.com: . These are operational hygiene items, not immediate security risks.

How to fix this

1

Consolidate certificate issuance to 1–2 trusted CAs

At a glance

Key data points from the scan.

TLS Version

Issues detected

TLS certificate verification failed on www.clickpass.com: [SSL: CERTIFICATE_VERIFY_FAILED] certificate verify failed: Hostname mismatch, certificate is not valid for 'www.clickpass.com'. (_ssl.c:1081)

DMARC Policy

p=reject

Strengths: DMARC policy set to reject (strongest); SPF record present with hard-fail (-all). Issues: No DKIM records found for common selectors (domain may use custom selectors — this is not a confirmed gap).

SPF Record

Present

v=spf1 -all

Security Headers

0/0 present

All headers configured.

HSTS

Not enabled

Could not fetch https://www.clickpass.com — connection failed or timed out.

SSL Certificate

Issues

Issues: Could not retrieve certificate details.

DNSSEC

Not enabled

Strengths: 6 nameservers configured (a3-64.akam.net., a13-65.akam.net., a1-98.akam.net., a2-64.akam.net.); 1 MX records present; Zone transfers properly restricted. Issues: DNSSEC not configured — DNS responses can be spoofed.

Similar companies

Other domains with comparable security profiles.