In 2025, Sebastian Pipping evaluated if top IT companies serve security.txt files as per RFC 9116 recommendations for better cybersecurity practices. He tested 50 firms and found that only 39 (78%) had implemented this feature correctly on their websites. Companies like Bosch, Cisco, Dell, Mercedes-Benz parent Siemens, Rohde & Schwarz, Trend Micro, Vodafone, Yokogawa, and Zyxel were among the ones who complied with the standard. He encourages others to adopt this practice or refer them to securitytxt.org for guidance.
He also emphasizes that businesses should ensure their websites provide easy accessibility to such crucial information regarding cybersecurity measures taken by their organization, fostering trust and transparency among customers and stakeholders alike.\
Complete Article after the Jump: Here!