Measured 2026-06-26 · public DNS
Is citi.com protected against email spoofing?
Yes — citi.com enforces DMARC (p=reject).
Unchanged since 2026-06-19
Stronger than 33% of banks in United States
80% of the sector already enforces p=reject
A
DMARC
p=reject
SPF
~all
DKIM
2 selector(s)
Eligible for BIMI: publish your logo to display it in inboxes
How to fix it
Marc, the DMARC copilot, finds every sender, writes the exact DNS, and walks your domain safely from p=none to p=reject.
Published record
v=DMARC1; p=reject; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc.reports.rua@citi.comWhat this means
- • Politique p=reject : protection maximale contre l’usurpation.
- • SPF sans mécanisme « all » final : comportement par défaut neutre.
- • Au moins une clé DKIM valide publiée.
History
- 2026-06-26First measurementProtected (p=reject)