Measured 2026-06-26 · public DNS
Is capitalone.com protected against email spoofing?
Yes — capitalone.com enforces DMARC (p=reject).
Unchanged since 2026-06-19
Stronger than 53% of banks in United States
80% of the sector already enforces p=reject
A
DMARC
p=reject
SPF
~all
DKIM
3 selector(s)
BIMI + verified mark (VMC) — your logo, authenticated
How to fix it
Marc, the DMARC copilot, finds every sender, writes the exact DNS, and walks your domain safely from p=none to p=reject.
Published record
v=DMARC1; p=reject; fo=1; ri=3600; rua=mailto:capital-one@rua.agari.com; ruf=mailto:capital-one@ruf.agari.comWhat this means
- • Politique p=reject : protection maximale contre l’usurpation.
- • SPF se termine par ~all (softfail) : acceptable en phase d’observation, viser -all à terme.
- • Au moins une clé DKIM valide publiée.
History
- 2026-06-26First measurementProtected (p=reject)