Medido el 2026-07-11 · DNS público

¿Está capitalone.com protegido contra la suplantación de correo?

Sí — capitalone.com aplica DMARC (p=reject).

Postura sin cambios desde el 2026-06-19

Más protegido que el 53 % de bancos en Estados Unidos

El 80 % del sector ya aplica p=reject

Ver el barómetro sectorial

A

DMARC

p=reject

SPF

~all

DKIM

3 selector(es)

BIMI + marca verificada (VMC) — tu logo, autenticado

Cómo corregirlo

Thomas, tu CISO virtual con IA, identifica cada fuente, escribe el DNS exacto y lleva tu dominio de p=none a p=reject con total seguridad.

Registro publicado

v=DMARC1; p=reject; fo=1; ri=3600; rua=mailto:capital-one@rua.agari.com; ruf=mailto:capital-one@ruf.agari.com

Qué significa esto

  • Politique p=reject : protection maximale contre l’usurpation.
  • SPF se termine par ~all (softfail) : acceptable en phase d’observation, viser -all à terme.
  • Au moins une clé DKIM valide publiée.

Historial

  • 2026-06-26Primera mediciónProtegido (p=reject)

Sobre Capital One

Capital One is a major financial institution operating in France, recognized for its consumer credit services and financial management solutions. The capitalone.com domain represents a critical element of its digital communication infrastructure, used for official correspondence with customers, business partners, employees, and regulatory authorities. Within this sensitive context, securing email authentication is strategically paramount. Capital One must protect its domain against spoofing and phishing attacks that could undermine customer trust and damage its reputation. Cybercriminals specifically target financial institutions by impersonating their domains to steal credentials and sensitive data. Capital One operates under a stringent regulatory framework including NIS2 (Directive on Network and Information Systems Security) and potentially DORA (Digital Operational Resilience Act) depending on its activities. These obligations mandate robust email authentication and rigorous cyber risk management. DMARC (Domain-based Message Authentication, Reporting and Conformance) serves as a fundamental pillar of this strategy, alongside SPF and DKIM protocols. Implementing an appropriate DMARC policy on capitalone.com enables the organization to control authorized domain usage, detect impersonation attempts in real-time through authentication reports, and strengthen deliverability of legitimate communications. For a financial sector entity, this security measure transcends best practice status to become an essential requirement for preserving the security, integrity, and availability of its critical digital services. DMARC adoption demonstrates Capital One's commitment to safeguarding customer communications and meeting evolving cybersecurity standards.

En este sector