You won't find a website at ftportfolios.sharepoint.com. Visit the address and you're immediately redirected to a Microsoft login page. That means the real content is behind a corporate portal. On its own, that isn't unusual — lots of businesses use SharePoint internally. But for a site that handles logins and could store sensitive data, the lack of visible domain ownership is a problem. The domain's registration details are not publicly available, and there is no record of this site in the Wayback Machine. Legitimate public businesses leave a trail. Here, there is none. The technical security measures are fine — the connection is encrypted and there are no blacklist flags. But the real question for someone wondering 'is ftportfolios.sharepoint.com a scam?' is: who sent you this link? If you got it unexpectedly from someone you don't know, treat it like a login page you didn't ask for. Your password belongs to you, not to the site that asks for it. If this is a legitimate portal from an employer or vendor you work with, confirm the URL with them directly before entering credentials.
No — ftportfolios.sharepoint.com doesn't look safe
In plain English
This is not a public website you can visit. It redirects straight to a Microsoft login page, and the actual domain history and ownership are hidden. While the security setup is fine for a private SharePoint site, the lack of transparency about who owns it and what the site is for makes it hard to recommend trusting it blindly.
What you should do now
Don't panic. These steps limit the damage, and the sooner you take them the better.
Don't enter any details
No passwords, card numbers or personal information — even if the site looks professional.
Close the tab
Especially if you got here from an email, text message or social media ad.
Already paid? Call your bank
Contact your bank or card provider right away. They can often stop or reverse a recent payment.
Warn others
Report the site and share this check with anyone who sent you the link.
Where the score comes from
Strong security setup: modern encryption, a valid Microsoft-issued certificate, and clickjacking protection are all in place. No blacklist or Safe Browsing flags either.
The WHOIS record for ftportfolios.sharepoint.com shows no match, and the domain ownership is hidden behind Microsoft's footprint. A SharePoint site that redirects to Microsoft login is expected to belong to an organization, but the lack of visible domain registration details is opaque for a business-facing site.
The site is not blacklisted and has no Google Web Risk flags, which is good. But the lack of any Wayback Machine history and a Tranco rank outside the top million suggest this specific subdomain may be very new or seldom visited.
The site immediately redirects to a Microsoft login page, so it offers no public-facing content, no about page, and no contact information about who runs it. The missing favicon and blocked robots.txt reinforce the sense that this is not a public-facing business site.
Because this is a private SharePoint instance behind a login portal, it is not a public commercial website that would need typical legal pages. The redirect to Microsoft's own OAuth login suggests user data handling is governed by Microsoft's privacy policy.
DNS resolution is clean with multiple IPs, but DNSSEC is not enabled and there are no email MX records. The site enforces HTTPS and uses TLS 1.3, which is modern. The missing mail handling and DNSSEC are minor gaps for a SharePoint backend.
What we checked
Think this verdict is wrong?
Site owners can request a fresh scan. Scores update automatically as signals change.