ufirstaccount.co.uk

.uk crawl

First seen 2026-04-11 · Last seen 2026-05-18 · ok HTTP/1.1 200 969 ms crawled 2026-05-19

IE · 52.48.170.175 · AS16509 Amazon.com, Inc.

Reputation 100/100

Classifying

HTML metadata

Description: Discover your world of benefits online. Benefits by account type. ufirst Gold. ufirst Private.
Language: en

Open Graph

description: Discover your world of benefits online. Benefits by account type. ufirst Gold. ufirst Private.

Technology

CDN: Amazon CloudFront
CMS: Gatsby

Third-party hosts loaded (1)

cdn.trackjs.com×1

Registration

Registrar

CSC Corporate Domains, Inc

Created

2006-07-06

Expires

2026-07-06 46 days left

Updated

2025-07-02

Name servers

udns1.cscdns.net.
udns2.cscdns.uk.

DNS records live

NS

udns1.cscdns.net
udns2.cscdns.uk

MX

10 mxa-006be801.gslb.pphosted.com
10 mxb-006be801.gslb.pphosted.com

TXT

39xh9qq41bmdwf2r0tnc4whhh24w434z

Verified for

Microsoft 365

Email authentication strong

SPF: v=spf1 include:_spf.affiniongroup.com -all
strict (-all)
DMARC: v=DMARC1; p=reject; fo=1; rua=mailto:rbs@rua.netcraft.com; ruf=mailto:rbs@ruf.netcraft.com
policy: reject (enforced)
DKIM: no key found at common selectors

Certificate (current)

COMODO RSA Organization Validation Secure Server CA

from 2025-11-05 to 2026-11-06

Expires in 169 days

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 70/100 Checked live page: https://ufirstaccount.co.uk/

present

strict-transport-security
content-security-policy
x-frame-options

findings

CSP allows unsafe inline scripts/styles
CSP uses wildcard sources
missing content type protection
missing Referrer Policy
missing Permissions Policy

Header values

x-frame-options: SAMEORIGIN
content-security-policy: frame-ancestors 'self';default-src 'unsafe-inline' 'unsafe-eval' 'self' https:;img-src 'self' data: https:;connect-src * always;
strict-transport-security: max-age=31536000; includeSubdomains; always

Linked from (1)

ulsterbank.co.uk×3