Medido el 2026-07-11 · DNS público

¿Está cash.app protegido contra la suplantación de correo?

Sí — cash.app aplica DMARC (p=reject).

Postura sin cambios desde el 2026-06-19

Más protegido que el 53 % de bancos en Estados Unidos

El 80 % del sector ya aplica p=reject

Ver el barómetro sectorial

A

DMARC

p=reject

SPF

~all

DKIM

1 selector(es)

Apto para BIMI: publica tu logo para mostrarlo en los buzones

Cómo corregirlo

Thomas, tu CISO virtual con IA, identifica cada fuente, escribe el DNS exacto y lleva tu dominio de p=none a p=reject con total seguridad.

Registro publicado

v=DMARC1; p=reject; rua=mailto:dmarc_agg@vali.email

Qué significa esto

  • Politique p=reject : protection maximale contre l’usurpation.
  • SPF se termine par ~all (softfail) : acceptable en phase d’observation, viser -all à terme.
  • Au moins une clé DKIM valide publiée.

Historial

  • 2026-06-26Primera mediciónProtegido (p=reject)

Sobre Cash App

Cash App is a mobile payment and money transfer service operating in France under the domain cash.app. As a digital financial platform, the organization manages critical communications with its users, business partners, and internal staff. Its email scope encompasses transactional correspondences, security notifications, customer support communications, as well as administrative and internal exchanges between employees. Securing the cash.app domain holds strategic importance. Financial services face particularly high risks of domain spoofing, as cybercriminals seek to exploit user trust to commit fraud, identity theft, or unauthorized account access. Robust implementation of DMARC, SPF, and DKIM on cash.app is essential to authenticate legitimate messages and reject spoofing attempts. As an entity operating in the financial sector in France, Cash App is subject to stringent regulatory obligations. The NIS2 Directive imposes enhanced cybersecurity measures on essential service operators, while the DORA regulation (Digital Operational Resilience Act) establishes digital operational resilience standards. These regulatory frameworks include explicit requirements for email authentication and protection against phishing threats targeting financial institutions and their clients. The DMARC Observatory documents the email authentication posture of cash.app, enabling security researchers, IT professionals, and users to understand the measures deployed to protect the integrity of electronic communications originating from this financial platform.

En este sector