oatly.com

.com crawl

First seen 2026-04-14 · Last seen 2026-05-18 · ok HTTP/1.1 200 1471 ms crawled 2026-05-07

SE · 193.14.90.203 · AS1257 Tele2 SWIPnet

Reputation 95/100 weak security headers

Classifying

HTML metadata

Title

Oatly | the Original Oat Drink Company | Oatly

Description

A site filled with everything you could possible think of, and also probably not think of, related to an oat drink company called Oatly.

Language

Canonical

https://www.oatly.com

Translations

da-dk
de-de
en
en-au
en-ca
en-gb
en-ie
en-us
es-es
fi-fi
fr-be
fr-fr
nb-no
nl-be
nl-nl
pl-pl
sv-se

Open Graph

title: Oatly | the Original Oat Drink Company | Oatly
locale: en
description: A site filled with everything you could possible think of, and also probably not think of, related to an oat drink company called Oatly.

Technology

CDN: Azure Front Door
CMS: Next.js

Social

Registration

Registrar

Abion AB

Created

2000-05-03

Expires

2027-05-03 348 days left

Updated

2026-04-26

Name servers

a.portsdns.se
b.portsdns.net

DNS records live

NS

a.portsdns.se
b.portsdns.net

MX

10 oatly-com.mail.protection.outlook.com

TXT

Show 11 TXT records

bqjmt3d4nzmjyqrpplc7fsncd6ds45mr
_s82333m5smxap3x7q4t1g5r68ytt9br
02f2b8f207e04c9a897f830eddfb6ace
atlassian-domain-verification=q37zaAtxbgZjGqEfuazBUGhioaaUyQ4NMMeQ1YAl6DYrL0cY4qNrc5FEixgObFKt
pexip-ms-tenant-domain-verification=c938fa42-40cd-4b99-970c-9016e6e531c4
google-site-verification=TNM3WVxWMVMBPtQgglA5vRsoCG_hcaioHMC2gaQmiz4
google-site-verification=4ycPY0fqCruELDeLNhVI3GOobp6rUBQjFbQf58DurQQ
facebook-domain-verification=kq2nh5fs46tguc7rju6hqi3yv9yh5m
docusign=4c533948-5125-46a4-9d20-c0676858698a
apple-domain-verification=567MO0eDzifbuVDl
jv21c6slqcltwcvy9hzt2061y3l44bf3

Email authentication strong

SPF

v=spf1 include:spf.protection.outlook.com include:servers.mcsv.net include:shops.shopify.com include:sendgrid.net include:emaileuc.freshservice.com include:amazonses.com ip4:77.81.189.101 ip4:46.254.14.229 ip4:168.245.76.176 ip4:194.68.215.35 ip4:87.253.233.197 -all

strict (-all)

DMARC

v=DMARC1; p=reject; rua=mailto:yd816iek@ag.eu.dmarcadvisor.com,mailto:rua@dmarc.portsgroup.com;

policy: reject (enforced)

DKIM

Show 5 DKIM selectors

selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5mWttPC5v6Kl9DM1RL8FTDURZ1LQUq1uiAOkPACsstOvtOMY+xRDF6tI1jJbaRO2w2E+VcxtGX9KB…
selector2: v=DKIM1; k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDJ89uaKwvkyYrjLV4SoOQH0Ubx9v+a1YisLiL387WzOJISWKJSmj/4InpxGYFDKmQxYyJnfMgK6Y49UMLvkI…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqubxPpPI9cL1CvcwRBtoc6Xm0BkRf/kh7P3rOirT5M9nzJTAuSSvpGDapfiCFM1CdJxuBUaR9l2oxGgHus…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDNyy6FoK6jWijxvgqXb8A0zK48lT4CAZ+/NAFxXKNIKM2OAEV3pcGPndppruMSWgqNYfj5EX4sHWdZpWYo4Puyvk…

selectors probed

Certificate (current)

DigiCert Global G2 TLS RSA SHA256 2020 CA1

from 2025-09-02 to 2026-10-04

Expires in 137 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 30/100 Checked live page: https://www.oatly.com/

findings

missing HSTS
missing Content Security Policy
missing frame protection
missing content type protection
missing Referrer Policy
missing Permissions Policy