wecu.com

HTML metadata

Title

WECU | Not-for-Profit Credit Union | Banking & Loans

Description

Established in 1936. Insured by NCUA. WECU is rated Washington's Healthiest Credit Union. Join if you're in WA - live, work, worship, or going to school!

Language

en

Canonical

https://www.wecu.com/

Feeds

• WECU Feed RSS

Open Graph

url

https://www.wecu.com/

title

WECU | Not-for-Profit Credit Union | Banking & Loans

site name

WECU

description

Established in 1936. Insured by NCUA. WECU is rated Washington's Healthiest Credit Union. Join if you're in WA - live, work, worship, or going to school!

Technology

CDN

Cloudflare

CMS

WordPress

Analytics

• Google Tag Manager

Third-party hosts loaded (6)

• tag.simpli.fi×3
• www.facebook.com×3
• embed.signalintent.com×1
• us01ccistatic.zoom.us×1
• web.baconpay.com×1
• www.googletagmanager.com×1

Social

• youtube
• twitter
• facebook
• instagram

Contact

Phone

• 325180113

Address

rd GovernanceSecurityContact UsWECU Routing Number32518

Registration

Registrar

NameCheap, Inc.

Created

1997-08-29

Expires

2036-01-05 3516 days left

Updated

2026-04-23

Name servers

• arnold.ns.cloudflare.com
• liz.ns.cloudflare.com

DNS records live

NS

• arnold.ns.cloudflare.com
• liz.ns.cloudflare.com

MX

• 11 wecu-com.mail.protection.outlook.com

TXT

Show 14 TXT records

• a88fd5cefb5d4dcab3a25e42d12a8c9a
• amazon-business-verification=ca85c1c2390daeebf05cadbc8c8a4c89b5b316996f6781f3a703f7bc55abec27
• bw=bqoAJMQ6v04oooz9rl6LEKaSe7mkbVQ8sNzieBT5t70X
• ca3-0f130b923ee34b3b97602f3afdedba05
• duo_sso_verification=bIVoklbOOBO1pTmcRdDBQLF98RV5fdcwXpNu57BtqZ8J31qS7Hcv1f31nXw8Fc43
• jamf-site-verification=L7hE53KCI-3e0FFDcco2AA
• paloaltonetworks-site-verification=73e84e9253f6e029aa2e0f98a404039411e4e2ad88cc9acf4afa6af682a6cfe2
• sophos-domain-verification=c0b2cc376b4ec1e6fdf4c6c51be704853cb4ef3c15e549108f809d388d92d1cb
• uber-domain-verification=ab3ec391-03d4-4754-b246-92fa0e8fc1ff
• DirectFedAuthUrl=https://login.microsoftonline.com/5ef68249-ac3b-4cf6-8875-242d35b1e01e/saml2
• Z3p969h7wvJs3waZNNyYay0A8Ho7uKsQZ3CSKolmqXSO/5j4XKpoTpaI2yEtpbI06xksrFGumVewlwLBw2svsA==
• _e1gd0l681kwpr6ujyq82lqbkiwaiyg3
• _kjsokw1008a7mnuz7yagf90ffbn1m3e
• a5961ff51b4b5195880d482aeed7f458dd70e3fd196f2d1396

Verified for

• Adobe
• Apple
• Atlassian
• Canva
• DocuSign
• Google
• Microsoft 365
• Perplexity
• Zoom

Email authentication strong

SPF

v=spf1 include:%{i}._ip.%{h}._ehlo.%{d}._spf.vali.email ~all

softfail (~all)

DMARC

v=DMARC1; p=quarantine; sp=reject; pct=100; rua=mailto:dmarc_agg@vali.email; fo=1; ri=3600

policy: quarantine · sp=reject

DKIM

• selector1: v=DKIM1; k=rsa; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8KtzQIl/JhCMkAN0Pe8I6Qpc+pciy9IXZQuRLgjWJa80/15kMvd5oGLKAZFBe9X1isYEgsqhYJlUKp…
• s1: k=rsa; t=s; p=MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1gU64wM331J2x42nJ5l0VWV9mz2yyXOQwlgqvQ5eOkANWTV43m7GSCUU9MBBKHDpm6+8o9nY+5vm506tZ…
• s2: k=rsa; t=s; p=MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQC8tvSmzHnj/KkHIVAuonmai05ZFiat3Js8GETYTxg0Pfb3773i53A56TIx89vrodwSgVPFTQFqQ1Tg/KOpQM6YlC…

selectors probed

Certificate (current)

Full certificate history on crt.sh ↗

HTTP security headers

Header hygiene 75/100 Checked live page: https://www.wecu.com/

present

• strict-transport-security
• content-security-policy
• x-frame-options
• x-content-type-options

findings

• CSP allows unsafe inline scripts/styles
• CSP uses wildcard sources
• weak frame protection
• missing Referrer Policy
• missing Permissions Policy

Links to (7)

• apple.com×1
• facebook.com×1
• google.com×1
• instagram.com×1
• nmlsconsumeraccess.org×1
• twitter.com×1
• youtube.com×1

Linked from (2)

• sustainableconnections.org×1
• bellinghambells.com×1