Gemessen am 2026-07-04 · öffentliches DNS
Ist revolut.com gegen E-Mail-Spoofing geschützt?
Teilweise — revolut.com verschiebt nicht authentifizierte Mails in die Quarantäne (p=quarantine).
Haltung unverändert seit dem 2026-06-19
Stärker geschützt als 20 % der Banken in Vereinigtes Königreich
70 % der Branche setzt bereits p=reject durch
B
DMARC
p=quarantine
SPF
~all
DKIM
4 Selektor(en)
BIMI + verifizierte Marke (VMC) — dein Logo, authentifiziert
So behebst du es
Thomas, der DMARC-Copilot, findet jede Quelle, schreibt das exakte DNS und bringt deine Domain sicher von p=none zu p=reject.
Veröffentlichter Eintrag
v=DMARC1; p=quarantine; pct=100; sp=quarantine; rua=mailto:revolut@rua.netcraft.com,mailto:dmarc@revolut.com; ruf=mailto:revolut@ruf.netcraft.com,mailto:dmarc@revolut.com;Was das bedeutet
- • Politique p=quarantine : les messages non alignés sont mis en indésirable.
- • SPF se termine par ~all (softfail) : acceptable en phase d’observation, viser -all à terme.
- • Au moins une clé DKIM valide publiée.
Verlauf
- 2026-06-26Erste MessungIn Anwendung (p=quarantine)
Über Revolut
Revolut is a major French fintech operating in the digital financial services sector. As a payment and digital asset management company, Revolut uses the revolut.com domain for all its official communications, including correspondence with customers, banking partners, employees, and regulators. Its email scope encompasses transactional notifications, account confirmations, security alerts, newsletters, and regulatory documents sent to an internationally distributed user base rooted in France.
Securing the revolut.com domain through DMARC represents a critical priority for Revolut. As a financial services provider, it faces significant risks from domain spoofing attacks designed to compromise customer credentials, banking data, or facilitate wire fraud schemes. Cybercriminals routinely exploit the absence of DMARC protection to send fraudulent emails impersonating recognized fintech companies.
From a regulatory perspective, Revolut is subject to the NIS2 Directive (Network and Information Security Directive) and DORA (Digital Operational Resilience Act) of the European Union. These frameworks impose stringent obligations on email authentication and protection against domain impersonation. The rigorous implementation of SPF, DKIM, and DMARC on revolut.com constitutes an essential component of regulatory compliance and operational risk management.
Adopting a robust DMARC strategy enables Revolut to ensure communication integrity, protect user trust, and strengthen its security posture against persistent social engineering threats prevalent in the fintech sector. Comprehensive email authentication is fundamental to maintaining the credibility of all customer-facing and regulatory communications.
