Is ibm.com legit?

88
/ 100
Trusted
Industry: Software & Downloads

This website is largely trustworthy, showing excellent security and a long-standing, well-established identity. The only minor concerns are a misconfigured sitemap and a high number of external scripts, which should be assessed for necessity.

Software & Downloads average: 78/100 · based on 75 sites

Checked: April 21, 2026 at 10:49 PM UTC

Is ibm.com a scam? Here's what we found.

Security 90/100

Security measures are robust, featuring a valid SSL certificate with modern TLS version, HSTS, CSP, and clickjacking protection, and no threats detected by Google Web Risk. The only slight drawback is the number of external scripts, which merits careful monitoring.

Identity 95/100

With a domain age of over 40 years registered through a reputable corporate registrar, this website demonstrates exceptional longevity and a clear, established identity.

Reputation 90/100

The site commands a very high Tranco Rank and is clean on all DNS blacklists, indicating a strong and positive reputation. The lack of Trustpilot or Web Archive data is not a concern given its established online presence.

Transparency 95/100

The site is very transparent, providing accessible contact information, legal pages, and a strong presence across multiple social media platforms, which is indicative of an open and reputable organization.

Compliance 95/100

The presence of both privacy and terms of service pages, alongside a DMARC record, suggests good attention to legal and email authentication compliance.

Infrastructure 85/100

The underlying infrastructure is generally solid with good DNS resolution, email authentication, and use of a robots.txt file. The misconfigured sitemap is a minor technical oversight that could be improved.

Signals Detected

[+]
Tranco Rank: Rank #304

This is one of the most visited websites globally

[+]
Structured Data: Found

Site has structured data markup

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[~]
External Scripts: 41 scripts

Excessive number of external scripts — may indicate malicious injection

[+]
SSL Certificate: Valid

Valid certificate, expires in 179 days

[?]
Certificate Issuer: DigiCert Inc

Certificate issued by DigiCert Inc

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
Domain Age: 40 years, 8 months

Domain created 1986-03-19T05:00:00Z (40 years, 8 months ago)

[?]
Registrar: CSC Corporate Domains, Inc.

Registered through CSC Corporate Domains, Inc.

[+]
Domain Expiry: 2027-03-20T04:00:00Z

Expires in 332 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[+]
DNS Resolution: 3 IP(s)

Resolves to: 2a02:26f0:480:582::3831, 2a02:26f0:480:5b1::3831, 23.37.59.124

[+]
Email (MX Records): 2 record(s)

Mail servers: mx0b-001b2d05.pphosted.com., mx0a-001b2d05.pphosted.com.

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 4 server(s)

DNS providers: dns1.p05.nsone.net., dns2.p05.nsone.net., dns3.p05.nsone.net., dns4.p05.nsone.net.

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
robots.txt: Present

robots.txt has 169 directives and references a sitemap

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Content Security Policy: Present

Site has Content Security Policy configured

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[?]
Sitemap: Misconfigured

Sitemap URL returns non-XML content

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 5 platforms

Website links to multiple social media platforms

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Certificate Transparency: Unable to check

Could not query certificate transparency logs

[+]
Page Load Time: 327ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for ibm.com
<a href="https://verified.fyi/review/ibm.com"><img src="https://verified.fyi/badge/ibm.com?size=medium&style=full&theme=dark" alt="ibm.com trust score — verified.fyi" /></a>
[![ibm.com trust score](https://verified.fyi/badge/ibm.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/ibm.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating a technology giant like IBM, understanding its trustworthiness goes beyond surface-level checks. This isn't a new startup, but a company with a rich history spanning over four decades online. For a domain in the software and services industry, a company's age (ibm.com is 40 years old) is a significant indicator of stability and long-term commitment. Legitimate tech firms typically invest heavily in their digital presence, including clear identity and advanced security protocols. IBM demonstrates this with its corporate domain registration and strong SSL/TLS configuration, which are expected from such an entity. The presence of comprehensive legal pages and diverse contact options is also a standard for established businesses, ensuring user clarity and recourse. While the sheer volume of external scripts found on the site is higher than ideal and could theoretically pose a supply chain risk, for a complex, global organization like IBM, this often reflects integration with various essential third-party tools and services. It's a common challenge for enterprise-level websites to manage a large script footprint, though it does warrant a closer look. The low Trustpilot score, however, is an outlier for such a prominent brand and might suggest issues with specific customer service interactions rather than overall site security or legitimacy. Users interacting with such sites should always be aware of the security best practices, such as ensuring their browser connection is secure and being mindful of any unusual requests, though this is general advice applicable to any online interaction.