Medido el 2026-07-11 · DNS público

¿Está discover.com protegido contra la suplantación de correo?

Parcialmente — discover.com pone en cuarentena el correo no autenticado (p=quarantine).

Postura sin cambios desde el 2026-06-19

Más protegido que el 10 % de bancos en Estados Unidos

El 80 % del sector ya aplica p=reject

Ver el barómetro sectorial

B

DMARC

p=quarantine

SPF

~all

DKIM

4 selector(es)

BIMI + marca verificada (VMC) — tu logo, autenticado

Cómo corregirlo

Thomas, tu CISO virtual con IA, identifica cada fuente, escribe el DNS exacto y lleva tu dominio de p=none a p=reject con total seguridad.

Registro publicado

v=DMARC1; p=quarantine; rua=mailto:dmarc_agg@vali.email,mailto:dmarc_rua@discover.com; ruf=mailto:dmarc_ruf@discover.com; fo=1

Qué significa esto

  • Politique p=quarantine : les messages non alignés sont mis en indésirable.
  • SPF se termine par ~all (softfail) : acceptable en phase d’observation, viser -all à terme.
  • Au moins une clé DKIM valide publiée.

Historial

  • 2026-06-26Primera mediciónEn aplicación (p=quarantine)

Sobre Discover

Discover.com is a major French organization operating in the financial services and payment sector. As an entity established in France, it manages a complex email ecosystem involving its internal teams, business partners, and customers. Its messaging domain is used for employee authentication, distribution of official communications, sensitive financial transactions, and correspondence with banking institutions and regulators. Securing the discover.com domain is critically important given the risks of identity spoofing and phishing attacks. Cybercriminals specifically target financial institutions to appropriate brand identity and access sensitive user data. Discover.com, as a trusted intermediary in the French and international financial ecosystem, must ensure the integrity of its email communications. Compliant with the NIS2 Directive and DORA regulations applicable to the financial sector, Discover.com must strengthen its email authentication through DMARC, SPF, and DKIM. These protocols constitute fundamental cybersecurity measures to validate email sources and prevent spoofing attacks. Implementing a robust DMARC policy on discover.com ensures that only authorized email servers can send messages on behalf of the domain. This protection is essential for maintaining customer trust, protecting personal and financial data, and ensuring regulatory compliance. The DMARC Observatory at dmarc.com provides complete visibility into discover.com's email authentication, enabling security managers to monitor protection postures and identify potential attack vectors.

En este sector