Phishing on IP - IDS alert and outdated Joomla CMS on website....

Re: https://urlquery.net/report/b7144785-f915-4e08-b01a-f94a0f9b8f68
IDS alert: “ET INFO Lets Encrypt Free SSL Cert Observed with IDN/Punycode Domain - Possible Phishing”.

Re: https://aw-snap.info/file-viewer/?protocol=not-secure&tgt=zur-kartoffelhuette.de&ref_sel=GSP2&ua_sel=ff&fs=1

Loading the site failed: https://retire.insecurity.today/#!/scan/e707ac7a15ac120f635a8b08f5c3d508ed58d71ba9af1efb27ea8508dd9dc103
I get a “HTTP/1.1 301 Moved Permanently”.

F-state security and recommendations: https://observatory.mozilla.org/analyze/xn--kartoffelhtte-halle-fbc.de

Various security errors - x-content-type-options: 58 errors, validate-set-cookies-header: 1 error, strict-transport-security: 65 errors, no-disallowed-headers: 61 errors, sri: 54 errors, no-vulnerable-javascript-library: 1 error

Joomla - Version does not appear to be latest 3.8.5 - update now.

polonus (volunteer website security analyst and website-error-hunter)