Skip to main content

Is nefriits.com a Scam? Security Check Results - Nefriits Reviews

nefriits.com favicon

Is nefriits.com Safe? Security Analysis for Nefriits

https://nefriits.com

Check if nefriits.com is a scam or legitimate. Free security scan and reviews.

RetailLatviasmall
WordPress 6.8.2WooCommerce 9.7.1Elementor 3.28.0Google Analytics (gtag.js)Microsoft Clarity+3 more
Analyzed 7/30/2025Completed 10:35:35 PM
41
Security Score
HIGH RISK

Security scan incomplete. 3 out of 9 security checks failed to complete. The website may be inaccessible or protected by security measures. Please retry the scan or verify the website is accessible.

AI Summary

Nefriits is a Latvian-based small retail e-commerce business specializing in women's and men's clothing, accessories, and footwear. The website offers a multilingual experience targeting Latvian, English, and Russian speakers, with a focus on local customers in Riga and Latvia. The business model centers on online sales with free Omniva parcel delivery for orders over 70 EUR, indicating a customer-friendly logistics approach. The site is built on WordPress with WooCommerce and Elementor, reflecting a modern and flexible technical infrastructure. Performance optimizations such as lazy loading scripts and caching plugins are in place, contributing to a moderate to good user experience. Security posture is adequate with HTTPS enabled and domain transfer protection, but lacks advanced security headers and DNSSEC. Privacy compliance is limited due to missing privacy and cookie policies. Overall, the site is professional and trustworthy but could improve in privacy and security transparency.

Detected Technologies

WordPress 6.8.2WooCommerce 9.7.1Elementor 3.28.0Google Analytics (gtag.js)Microsoft ClarityjQueryWPRocket (lazy loading scripts)Omniva WooCommerce plugin

🧠AI Business Intelligence

Technology stack, business insights, and market analysis powered by AI.

Business Intelligence

Market & Strategic Analysis

Nefriits operates in the retail clothing sector with a clear focus on e-commerce. The company appears to be recently founded in 2023, consistent with the domain registration date. Its competitive advantage lies in localized offerings, multilingual support, and integration with local delivery services like Omniva. The business targets general consumers interested in fashion apparel and accessories. Marketing efforts include Google Analytics and Microsoft Clarity for user behavior insights, and social media engagement on Facebook and Instagram. The absence of detailed privacy and cookie policies may pose compliance risks. The company does not publicly disclose certifications or security policies, which could be areas for future development to enhance customer trust.

Extracted Contact Information

Marketing Intelligence Data

Email Addresses (1)

i*****@nefriits.com

Phone Numbers (1)

+3712660****

Security Posture Analysis

Comprehensive Security Assessment

The website employs HTTPS and has domain transfer protection, which are positive security indicators. However, the lack of DNSSEC and absence of security headers such as Content-Security-Policy, X-Frame-Options, and HSTS reduce the overall security posture. No vulnerability disclosure or incident response information is provided, which limits transparency in security management. The use of up-to-date WordPress and WooCommerce versions is a good practice, but continuous monitoring and implementation of security best practices are recommended. Privacy compliance is weak due to missing policies and consent mechanisms, which could expose the business to regulatory risks under GDPR.

Strategic Recommendations

Priority Actions for Security Improvement

1

Implement and publish a comprehensive privacy policy and cookie policy with clear GDPR compliance statements.

Observations

AI-powered comprehensive website and business analysis.

AI-Enhanced Website Analysis

Business Insights

Company:

Nefriits

Description:

Sieviešu, vīriešu apģērbu veikals. Aksesuāri, apavi, šorti, bikses, džemperi, jakas, komplekti, kostīmi u.c.

Key Services:
Online clothing salesAccessories and footwear salesFree Omniva parcel delivery for orders over 70 EUR
Content Quality:

good

Branding:

consistent

Technical Stack

Technologies:
WordPress 6.8.2WooCommerce 9.7.1Elementor 3.28.0Google Analytics (gtag.js)Microsoft ClarityjQueryWPRocket (lazy loading scripts)Omniva WooCommerce plugin
Frameworks:
WooCommerceElementor
Platforms:
WordPress
Performance:

moderate

Mobile:

good

Accessibility:

basic

SEO:

good

Security Assessment

Security Score:
70/100
Best Practices:
  • HTTPS enabled
  • ClientTransferProhibited domain status
  • No DNSSEC enabled (recommend enabling)

Analytics & Tracking

Services:
Google AnalyticsMicrosoft Clarity
Tracking Level:moderate
Privacy Compliance:basic

Advertising & Marketing

Tracking Pixels:
Microsoft Clarity
Marketing Tools:
Microsoft Clarity
Transparency Level:basic

Website Quality Assessment

Design Quality:good
User Experience:good
Content Relevance:good
Navigation Clarity:good
Professionalism:good
Trustworthiness:moderate

Key Observations

1

Website is a Latvian language focused e-commerce clothing store with multilingual support (Latvian, English, Russian).

🛡️Security Headers

HTTP security headers analysis and recommendations.

Security Headers

HTTP security headers analysis

0/100
Score
Analysis failed - content could not be retrieved

👤GDPR Compliance

Privacy and data protection assessment under GDPR regulations.

GDPR Compliance

Privacy and data protection assessment

0/100
Score
Analysis failed - content could not be retrieved

🛡️NIS2 Compliance

Network & Information Security Directive compliance assessment.

NIS2 Compliance

Network & Information Security Directive

0/100
Score
Analysis failed - content could not be retrieved

📧Email Security

SPF, DKIM, and DMARC validation and email security assessment.

Email Security

SPF, DKIM, and DMARC validation

80/100
Score

No DMARC reporting

LOW

DMARC aggregate reports not configured

Strict DMARC Alignment

LOW

Strict alignment may cause legitimate emails to fail

No BIMI Record

LOW

BIMI displays brand logos in email clients

No MTA-STS Policy

MEDIUM

MTA-STS enforces TLS for email delivery

No TLS-RPT Record

LOW

TLS-RPT provides reporting for email TLS issues

SPF
Sender Policy Framework
DKIM
DomainKeys Identified Mail
DMARC
Domain-based Message Authentication
MX Records
Mail Exchange Records
BIMI
Brand Indicators
MTA-STS
Mail Transfer Agent Security
TLS-RPT
TLS Reporting
DNSSEC
DNS Security
SPF Details
Record:
v=spf1 +a +mx +a:web1.trinity.lv include:_spf.garmtech.net ~all
DNS Lookups:4/10
Policy:~all
DKIM Selectors Found
Selector:default(1464-bit rsa)
DMARC Details
Policy:quarantine

🏆SSL/TLS Security

Certificate validity and encryption analysis.

SSL/TLS Security

Certificate validity and encryption analysis

72/100
Score

Weak Protocols Supported

HIGH

Server supports weak protocols: TLSv1.1

OCSP Stapling Not Enabled

LOW

OCSP stapling improves performance and privacy

Certificate Transparency Not Implemented

LOW

Certificate is not logged in Certificate Transparency logs

SSL Certificate Expires Within 90 Days

MEDIUM

SSL certificate expires in 81 days

Partial SSL/TLS Assessment

LOW

Completed 3 of 4 security checks due to time constraints

Protocol Support

TLSv1.3TLSv1.2TLSv1.1

OCSP Status

OCSP Stapling Disabled

📊DNS Health

DNS configuration and security assessment.

DNS Health

DNS configuration and security assessment

80/100
Score

DNSSEC Not Enabled

MEDIUM

DNSSEC is not configured for this domain

CAA Records Not Configured

LOW

Certificate Authority Authorization (CAA) records not found

Domain Delete Lock Not Enabled

LOW

Domain can be deleted without additional verification

Domain Registration Details

Domain Age
2 years(established)
Expiry Risk
low(180 days)
Protection Level
basicDNSSEC OFF

DNS Records

A Records:91.194.76.181
Name Servers:
ns1.trinity.lv
ns2.trinity.lv
MX Records:
10: mail.nefriits.com
SOA:Serial: 2025072204, TTL: 10800s

DNSSEC Status

DNSSEC Not Enabled

DNS Performance

Resolution Time:138ms

SPF Analysis

SPF Record:
v=spf1 +a +mx +a:web1.trinity.lv include:_spf.garmtech.net ~all

Network Security

Port scanning and network exposure analysis.

Network Security

Port scanning and network exposure analysis

20/100
Score

High-Risk Service Exposed: FTP

HIGH

Port 21 (FTP) is publicly accessible - FTP - Often unencrypted file transfer

🔧Technical Analysis

Detailed technical findings and analysis from AI assessment.

Technical Analysis

Comprehensive security assessment findings

Additional Findings

The website is built on a modern WordPress platform using WooCommerce for e-commerce functionality and Elementor for page building. Performance optimizations include lazy loading scripts via WPRocket and asynchronous loading of analytics scripts. The site uses Google Analytics and Microsoft Clarity for tracking user interactions. The domain is registered with NameCheap and has clientTransferProhibited status but lacks DNSSEC. The site is mobile optimized with responsive design and good navigation clarity. However, no explicit accessibility features beyond basic compliance were detected. SEO is supported by proper meta tags and multilingual hreflang attributes. Hosting provider details are not explicit but likely shared hosting given the registrar. Overall, the technical infrastructure is solid but could benefit from enhanced security configurations and privacy compliance improvements.
Analyze Another Website