indexo.dev

the-world-now.com

.com crawl

First seen 2026-04-12 · Last seen 2026-05-19 · ok HTTP/1.1 200 970 ms crawled 2026-05-19

US · 216.150.1.1 · AS16509 Amazon.com, Inc.

Reputation 94/100 dmarc monitor-only

Classifying

HTML metadata

Title
The World Now - Live World Events, Risk, and Market Intelligence
Description
Track global events live, monitor the Global Risk Index, and see AI market impact forecasting across crypto, commodities, stocks, and forex.
Language
en
Canonical
https://www.the-world-now.com

Open Graph

title
The World Now - Live World Events, Risk, and Market Intelligence
site name
The World Now
description
Track global events live, monitor the Global Risk Index, and see AI market impact forecasting across crypto, commodities, stocks, and forex.

Technology

CDN
Vercel
CMS
WordPress
Analytics
  • Google Tag Manager
Fonts
  • Google Fonts
Third-party hosts loaded (8)
  • media.cnn.com×2
  • cyprus-mail.com×1
  • datafa.st×1
  • faves.grow.me×1
  • fonts.googleapis.com×1
  • fonts.gstatic.com×1
  • reliefweb.int×1
  • www.googletagmanager.com×1

Registration

Registrar
Cloudflare, Inc.
Created
2025-12-31
Expires
2026-12-31 224 days left
Updated
2025-12-31
Name servers
  • howard.ns.cloudflare.com
  • ryleigh.ns.cloudflare.com

DNS records live

NS
  • howard.ns.cloudflare.com
  • ryleigh.ns.cloudflare.com
MX
  • 18 route1.mx.cloudflare.net
  • 31 route3.mx.cloudflare.net
  • 51 route2.mx.cloudflare.net
Verified for
  • Google

Email authentication partial

SPF
v=spf1 include:_spf.mx.cloudflare.net ~all
softfail (~all)
DMARC
v=DMARC1; p=none; pct=100; rua=mailto:re+p8d3o0sd8mp@dmarc.postmarkapp.com; sp=none; aspf=r;
policy: none (monitoring only) · sp=none
DKIM
no key found at common selectors

Certificate (current)

R12
from 2026-05-03 to 2026-08-01
Expires in 73 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 90/100 Checked live page: https://www.the-world-now.com/

present
  • strict-transport-security
  • content-security-policy
  • x-frame-options
  • x-content-type-options
  • referrer-policy
  • permissions-policy
findings
  • CSP allows unsafe inline scripts/styles
  • CSP uses wildcard sources
Header values
referrer-policy
strict-origin-when-cross-origin
x-frame-options
SAMEORIGIN
permissions-policy
camera=(), microphone=(), geolocation=(self), interest-cohort=()
x-content-type-options
nosniff
content-security-policy
default-src 'self'; script-src 'self' 'unsafe-inline' https://js.stripe.com https://maps.googleapis.com https://api.mapbox.com https://platform.twitter.com https://cdn.syndication.twimg.com https://www.googletagmanager.com https://datafa.st https://faves.grow.me https://*.grow.me; style-src 'self' 'unsafe-inline' https://fonts.googleapis.com https://api.mapbox.com https://platform.twitter.com; img-src 'self' data: blob: https:; font-src 'self' https://fonts.gstatic.com; connect-src 'self' https://api.stripe.com https://*.mongodb.net wss://*.mongodb.net https://api.mapbox.com https://*.mapbox.com https://events.mapbox.com https://cdn.syndication.twimg.com https://syndication.twitter.com https://www.google-analytics.com https://datafa.st https://theworldnow-ads.s3.us-east-1.amazonaws.com https://faves.grow.me https://*.grow.me; worker-src 'self' blob:; child-src 'self' blob:; frame-src 'self' https://js.stripe.com https://hooks.stripe.com https://platform.twitter.com https://syndication.
strict-transport-security
max-age=63072000; includeSubDomains; preload

Linked from (2)