Medido el 2026-07-11 · DNS público

¿Está citi.com protegido contra la suplantación de correo?

Sí — citi.com aplica DMARC (p=reject).

Postura sin cambios desde el 2026-06-19

Más protegido que el 33 % de bancos en Estados Unidos

El 80 % del sector ya aplica p=reject

Ver el barómetro sectorial

A

DMARC

p=reject

SPF

~all

DKIM

2 selector(es)

Apto para BIMI: publica tu logo para mostrarlo en los buzones

Cómo corregirlo

Thomas, tu CISO virtual con IA, identifica cada fuente, escribe el DNS exacto y lleva tu dominio de p=none a p=reject con total seguridad.

Registro publicado

v=DMARC1; p=reject; rua=mailto:dmarc_rua@emaildefense.proofpoint.com,mailto:dmarc.reports.rua@citi.com

Qué significa esto

  • Politique p=reject : protection maximale contre l’usurpation.
  • SPF sans mécanisme « all » final : comportement par défaut neutre.
  • Au moins une clé DKIM valide publiée.

Historial

  • 2026-06-26Primera mediciónProtegido (p=reject)

Sobre Citibank

Citibank, a world-renowned financial institution, operates in France through its banking, investment and wealth management services. The citi.com domain serves as a critical communication channel for the institution, conveying official correspondence with its clientele, transactional notifications, security alerts and internal communications to its French and international employees. This email scope is of major strategic importance given the sensitivity of financial and personal data processed. Securing the citi.com domain through DMARC addresses several imperatives: preventing identity spoofing that could serve as a vector for scams or phishing targeting customers, protecting Citibank's brand reputation, and ensuring the integrity of official communication channels. As a financial institution, Citibank is subject to strict regulatory obligations regarding cybersecurity, particularly the NIS2 Directive (security of networks and information systems) and the DORA Regulation (Digital Operational Resilience Act), which strengthen authentication requirements for messaging domains and traceability of digital exchanges. Authenticating emails sent under citi.com via SPF, DKIM and DMARC constitutes a fundamental measure to comply with these regulatory frameworks and demonstrate a robust security posture to supervisory authorities. Implementing a structured DMARC strategy enables Citibank to strengthen customer trust, reduce operational risks associated with domain compromise, and maintain its positioning as a reliable player in the financial sector.

En este sector