bluevine.com

HTML metadata

Title: Online Business Banking Solutions & Services | Bluevine
Description: Bluevine is a powerful online business banking platform built for where you are & where your business is going- with lower fees & effortless money movement.
Language: en-US
Canonical: https://www.bluevine.com

Open Graph

url: https://www.bluevine.com
title: Online Business Banking Solutions & Services | Bluevine
locale: en_US
site name: Bluevine
description: Bluevine is a powerful online business banking platform built for where you are & where your business is going- with lower fees & effortless money movement.

Technology

CDN: Vercel
CMS: Next.js

Analytics

Segment

Cookie consent

OneTrust

Third-party hosts loaded (6)

cdn.cookielaw.org×3
cdn.segment.com×2
dev.visualwebsiteoptimizer.com×2
api.segment.io×1
browser.sentry-cdn.com×1
geolocation.onetrust.com×1

Social

Contact

Address: 30 Montgomery St, Suite 1400, 07302, Jersey City, NJ, US

Registration

Registrar

GoDaddy.com, LLC

Created

2001-06-28

Expires

2028-06-28 770 days left

Updated

2026-03-23

Name servers

ns-1084.awsdns-07.org
ns-1626.awsdns-11.co.uk
ns-419.awsdns-52.com
ns-678.awsdns-20.net

DNS records live

NS

ns-1084.awsdns-07.org
ns-1626.awsdns-11.co.uk
ns-419.awsdns-52.com
ns-678.awsdns-20.net

MX

10 aspmx.l.google.com
20 alt1.aspmx.l.google.com
20 alt2.aspmx.l.google.com
30 aspmx2.googlemail.com
30 aspmx3.googlemail.com

TXT

Show 26 TXT records

mixpanel-domain-verify=2057c94f-18ce-41c7-b2e3-b3a1674d27b0
h1-domain-verification=Qi4YxGEaRXaSNW7miTYKTRFak6nzFiJguNanCE3ePnDjL2HA
wiz-domain-verification=75084a2a6fc02551fc340f2caa67d1f4aa4f82e8e4c26a2733129f3188d0231c
docker-verification=d97bb69c-6715-4c0f-a49c-db8d59c7dd50
google-site-verification=r-qhSWIqMYNCF4Selvyr5GhoZ_QAHM-wbdQSSC9NGPA
2dctd7txx1vnbrx4ptyq3gpv1htsx3cp
yahoo-verification-key=3tjBd9Gi5qEzcVRNBe3cHWHkTjLfmDFUZLcfwMCylVE=
atlassian-sending-domain-verification=93f55314-de19-42f0-994f-22a8ef69bfcb
anthropic-domain-verification-rpb0f2=HwUOGyZ2sqUfPWErfsZzdES3k
_globalsign-domain-verification=2jg0T9c1sgEqjSCN_l3CTDqVUxoExHH-z9LHaGka6F
teamviewer-sso-verification=5470e878794b4168b8a35d32e3d316ba
globalsign-domain-verification=BB0778475B790C3F8AC35C0A085C7DC1
pendo-domain-verification=3e8991ac-bdf1-4ab0-8d6b-1b786086609b
google-site-verification=klkO7IrqUXB6PrU5r1SGHiEHod1IXWY47tTEyaA6xWs
Validity-Domain-Verification=UpgDf2WQmtVMTFVhhBx/Dl7LRxk=
slack-domain-verification=dVbtriiMldDgVRcPdh62eXw1nooCU1oePA79tR4E
smartsheet-site-validation=IE0ppd3O4DKci4XFrK71RWJf1orFGDMy
stripe-verification=1ACE5FCAAC0817BBA02B1E4358AEBFC8F2D8630C413967008FE0146405AC43B
_globalsign-domain-verification=PLNAUGuniE4PBp4074yLEmPuFf1OvRJ7u_hM_5LDeT
atlassian-domain-verification=P9y+cKlOV8CVzpNagQ/ncR736o/aezIJ9JHU/hfsaJ735lWnGrBjG5XNrhqe6H3p
google-site-verification=c2qmGcJoz3ZyJHQhSW4UFU1or1BDEBOHm0zUiNh87hw
jamf-site-verification=02_6NbzUyY8wxKR4IYHaRw
google-site-verification=VFzEP02lXx9QPlZa87UjPidoTcuB-DNXMrqleBoAMkQ
openai-domain-verification=dv-tSryJBv2JcQgURQ8VPc48Cg3
apple-domain-verification=xAxxmMXhwvf9e2Dg
globalsign-domain-verification=43e5d023525c4964f0dd0a687bef9984

Email authentication strong

SPF

v=spf1 include:u910339.wl.sendgrid.net include:_spf.google.com include:mail.zendesk.com include:_spf.salesforce.com -all

strict (-all)

DMARC

v=DMARC1; p=reject; pct=100; fo=1; ri=3600; rua=mailto:192ca6d3@inbox.ondmarc.com,mailto:dmarc-notifications@bluevine.com,mailto:nnqbojlngf@rua.mailauth.ironscales.com;ruf=mailto:192ca6d3@inbox.ondmarc.com,mailto:dmarc-forensics@bluevine.com,mailto:nnqbojlngf@rua.mailauth.ironscales.com;

policy: reject (enforced)

DKIM

Show 5 DKIM selectors

google: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyF/z6jXDuxImCjmV00TnNghivAX0EVICP+DYzdFY3XFSaTDHWa6GmEePzT/3v98hascPLHC9v1jI8a…
k1: k=rsa; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDbNrX2cY/GUKIFx2G/1I00ftdAj713WP9AQ1xir85i89sA2guU0ta4UX1Xzm06XIU6iBP41VwmPwBGRNofhBVR+e6WHUo…
k2: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAv2aC2KjGKLOwTweBY5A9RpjsxaBXR9r7OAU6U8/zn92ivImI75naUujWbItRI/QmL1jy5PWGqLwoUA…
s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuH+3hEokUD+y0X24RYvjDHTE34VPlVFHlKhT6KBaWh4As7XL/I3QESD8Uuom7m3N9hYCvXm2NvcrBOTzxZ…
s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCvS7QX02QV/KdyabKbnOFqqerKCFS/1FEX7eNeMb0GkxKJu7hmcRAHdmYhXBlA9fvLLPMJ+FFFFRN3rBF1JD8zdH…

selectors probed

Certificate (current)

DigiCert Global G3 TLS ECC SHA384 2020 CA1

from 2025-05-07 to 2026-06-08

Expires in 19 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 80/100 Checked live page: https://www.bluevine.com/

present

strict-transport-security
content-security-policy
x-frame-options
x-content-type-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
content-security-policy: default-src 'self'; block-all-mixed-content; script-src 'report-sample' 'unsafe-eval' 'unsafe-inline' 'self' https://tags.srv.stackadapt.com https://browser.sentry-cdn.com https://cdn.mxpnl.com https://cdn.segment.com https://optimizely.bluevine.com https://static.ads-twitter.com https://www.google-analytics.com https://www.youtube.com https://cdn.cookielaw.org https://*.visualwebsiteoptimizer.com https://app.vwo.com https://rpzimsl7.bluevine.com https://www.googletagmanager.com https://connect.facebook.net https://script.crazyegg.com https://bat.bing.com https://snap.licdn.com https://js.navattic.com https://getrockerbox.com https://www.google.com https://www.gstatic.com https://www.googleadservices.com https://cdn.jsdelivr.net https://a.quora.com https://js.partnerpage.io https://code.jquery.com https://pagead2.googlesyndication.com https://d3e54v103j8qbb.cloudfront.net https://cdn.prod.website-files.com https://decagon.ai; style-src 'report-sample' 'unsafe-inline' 'self' https://tag
strict-transport-security: max-age=63072000

Links to (6)

Linked from (1)

ftassociation.org×2