Is americanexpress.com legit?

90
/ 100
Trusted
Industry: Finance

Americanexpress.com is a highly trusted and legitimate financial services website. Despite a minor concern about the upcoming domain renewal and some hidden content, its long history, robust security, and comprehensive compliance measures confirm its reliability.

Finance average: 80/100 · based on 48 sites

Checked: April 18, 2026 at 7:45 AM UTC · Refresh

Is americanexpress.com a scam? Here's what we found.

Security 95/100

Security is paramount for a financial institution, and americanexpress.com delivers with a secure TLS 1.3 connection, an actively managed SSL certificate from a reputable issuer, and clear status from Google Web Risk, indicating no detected threats.

Identity 85/100

This domain, active for over 30 years, possesses a strong and verifiable identity, including a reputable registrar. While a pending domain renewal raises a minor administrative question, the history overwhelmingly points to a well-established entity.

Reputation 95/100

As a globally recognized brand, americanexpress.com boasts an excellent reputation, evidenced by its high traffic rank and clean slate on DNS blacklists, which is exactly what you'd expect from a major financial player.

Transparency 80/100

The site provides clear contact information, legal pages, and a professional brand presence. However, the unexpected number of hidden elements warrants a closer look, as this can sometimes be a tactic for less reputable sites, though it's likely benign for a company of this stature.

Compliance 95/100

The website demonstrates strong compliance with readily available privacy and terms of service pages, alongside a professional brand and social media presence, which are standard expectations for a financial institution handling sensitive customer data.

Infrastructure 90/100

The foundational infrastructure is solid, featuring robust DNS resolution, comprehensive email authentication with SPF and DMARC, and a high-performance server setup, ensuring reliable service for its users.

Signals Detected

[+]
Tranco Rank: Rank #2194

This is a well-known, high-traffic website

[?]
Structured Data: None found

No structured data markup found

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
SSL Certificate: Valid

Valid certificate, expires in 164 days

[?]
Certificate Issuer: DigiCert Inc

Certificate issued by DigiCert Inc

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
Domain Age: 30 years, 3 months

Domain created 1995-06-04T04:00:00Z (30 years, 3 months ago)

[?]
Registrar: CSC Corporate Domains, Inc.

Registered through CSC Corporate Domains, Inc.

[~]
Domain Expiry: 2026-06-03T04:00:00Z

Expires in 45 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
DNS Resolution: 1 IP(s)

Resolves to: 104.102.60.103

[+]
Email (MX Records): 2 record(s)

Mail servers: mx0a-0023b801.pphosted.com., mx0b-0023b801.pphosted.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 6 server(s)

DNS providers: a13-65.akam.net., a22-66.akam.net., a9-65.akam.net., a24-67.akam.net., a1-196.akam.net., a8-64.akam.net.

[~]
Hidden Content: 69 hidden elements

Excessive hidden content found — may indicate cloaking or deceptive content

[+]
robots.txt: Present

robots.txt has 9 directives and references a sitemap

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Sitemap: Not found

No sitemap found — common for smaller sites

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 2 platforms

Website links to multiple social media platforms

[+]
Page Load Time: 139ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for americanexpress.com
<a href="https://verified.fyi/review/americanexpress.com"><img src="https://verified.fyi/badge/americanexpress.com?size=medium&style=full&theme=dark" alt="americanexpress.com trust score — verified.fyi" /></a>
[![americanexpress.com trust score](https://verified.fyi/badge/americanexpress.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/americanexpress.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating the trustworthiness of a website like americanexpress.com, which is a pillar of the financial services industry, we look for specifics that confirm its authenticity and security. Unlike smaller e-commerce sites, a global financial institution needs to demonstrate rock-solid security, a transparent identity, and meticulous compliance with regulations. Americanexpress.com's incredible domain age of over 30 years is a powerful indicator of stability and long-term commitment, far surpassing what one might expect from a less reputable operation. For financial websites, a robust security setup, including a modern TLS version and a clean record with Google Web Risk, is non-negotiable for handling sensitive user data and transactions. The site delivers on this, showcasing the kind of diligent safeguarding consumers should demand. While a minor flag around the upcoming domain expiry might typically raise an eyebrow for an unknown site, for a company as established as American Express, it's more likely an administrative oversight or part of their internal renewal process rather than an indicator of impending doom. Similarly, a finding of 'hidden elements' could be concerning for a shady site trying to game search engines, but given American Express's brand and overall strength, it's highly improbable to be malicious; more likely, it's a technical artifact or related to specific site functionality. Consumers interacting with financial platforms should always verify the lock icon in their browser and ensure the URL is correct to avoid phishing scams, but the American Express website itself is a beacon of trust.