capitalonesettlement.com

.com crawl

First seen 2026-04-19 · Last seen 2026-05-13 · ok HTTP/1.1 200 6496 ms crawled 2026-05-13

US · 150.171.109.35 · AS8075 Microsoft Corporation

Reputation 87/100 weak security headers no dmarc policy

Classifying

HTML metadata

Title: Capital One Data Breach - Home
Language: en

Technology

CDN: Azure Front Door
CMS: Ghost

Analytics

Google Tag Manager

Fonts

Font Awesome
Google Fonts

Third-party hosts loaded (3)

fonts.googleapis.com×1
use.fontawesome.com×1
www.googletagmanager.com×1

Registration

Registrar

GoDaddy Corporate Domains, LLC

Created

2022-01-21

Expires

2027-01-21 247 days left

Updated

2025-12-23

Name servers

ns1-06.azure-dns.com
ns2-06.azure-dns.net
ns3-06.azure-dns.org
ns4-06.azure-dns.info

DNS records live

NS

ns1-06.azure-dns.com
ns2-06.azure-dns.net
ns3-06.azure-dns.org
ns4-06.azure-dns.info

MX

10 site1.smtp.mx.exch580.serverdata.net
15 site2.smtp.mx.exch580.serverdata.net
15 site3.smtp.mx.exch580.serverdata.net

TXT

Show 5 TXT records

google-site-verification=m02B8qTMbnkGtAFpvMLPJDpuYQ-Citw4hPVrYhuMsWc
t0d1bgpd7dselbmelnjjknh9tk
hth2sq318verbnmdfnfpq1bs1t
MS=ms85618111
google-site-verification=KmqIusCB9evNVBt2bKZwBd4OIN5Db9-Sn9srRnLwPDY

Email authentication weak

SPF: v=spf1 include:spf.protection.outlook.com include:spf.intermedia.net include:_spf.act-on.net ~all
softfail (~all)
DMARC: not published
DKIM: no key found at common selectors

Certificate (current)

Go Daddy Secure Certificate Authority - G2

from 2026-01-22 to 2027-02-18

Expires in 275 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 40/100 Checked live page: https://www.capitalonesettlement.com/en

present

x-frame-options

findings

missing HSTS
missing Content Security Policy
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: DENY

Links to (2)

epiqglobal.com×2
identitydefense.com×2

Linked from (1)

locklaw.com×2