Is jpmorgan.com legit?

98
/ 100
Trusted
Industry: Finance

jpmorgan.com is a highly trusted website. Its decades-long domain age, robust security measures, and established financial institution branding confirm its legitimacy and operational integrity.

Finance average: 80/100 · based on 48 sites

Checked: April 18, 2026 at 8:12 AM UTC · Refresh

Is jpmorgan.com a scam? Here's what we found.

Security 98/100

The site boasts strong security with modern TLS 1.3, HSTS, and a Content Security Policy, indicating a serious commitment to protecting user data, which is paramount for a financial institution. Google Web Risk also finds it clean.

Identity 99/100

With a domain age of over 34 years registered through MarkMonitor, there's no doubt about the long-established identity of JPMorgan. The domain's extended expiry reinforces its long-term operational intent.

Reputation 98/100

Its Tranco rank signifies high traffic and recognition as a major online presence. The absence of DNS blacklist entries and long history contribute to an excellent reputation.

Transparency 95/100

The website provides clear contact information, complete branding, and links to multiple social media platforms, demonstrating a high level of transparency fitting a major corporation.

Compliance 95/100

The presence of both a privacy policy and terms of service pages indicates adherence to legal and regulatory requirements expected of a large financial services provider.

Infrastructure 98/100

The infrastructure is well-maintained with multiple IP addresses, robust email authentication (SPF and DMARC), and reliable name servers, all indicating a professional and resilient setup.

Signals Detected

[+]
Tranco Rank: Rank #5412

This is a well-known, high-traffic website

[?]
Structured Data: None found

No structured data markup found

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 34 years, 5 months

Domain created 1992-04-24T04:00:00Z (34 years, 5 months ago)

[?]
Registrar: MarkMonitor Inc.

Registered through MarkMonitor Inc.

[+]
Domain Expiry: 2028-04-25T04:00:00Z

Expires in 737 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
DNS Resolution: 3 IP(s)

Resolves to: 146.143.134.109, 146.143.198.109, 146.143.70.109

[+]
Email (MX Records): 4 record(s)

Mail servers: cluster14.us.messagelabs.com., cluster14.us.messagelabs.com., cluster14.us.messagelabs.com., cluster14a.us.messagelabs.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 6 server(s)

DNS providers: ns2.jpmorganchase.com., ns0098.secondary.cloudflare.com., ns06.jpmorganchase.com., ns1.jpmorganchase.com., ns0221.secondary.cloudflare.com., ns05.jpmorganchase.com.

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[+]
robots.txt: Present

robots.txt has 7 directives and references a sitemap

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Content Security Policy: Present

Site has Content Security Policy configured

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Sitemap: 68 pages

Site maintains a proper sitemap with 68 indexed pages

[+]
SSL Certificate: Valid

Valid certificate, expires in 45 days

[?]
Certificate Issuer: DigiCert Inc

Certificate issued by DigiCert Inc

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 5 platforms

Website links to multiple social media platforms

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
Page Load Time: 919ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for jpmorgan.com
<a href="https://verified.fyi/review/jpmorgan.com"><img src="https://verified.fyi/badge/jpmorgan.com?size=medium&style=full&theme=dark" alt="jpmorgan.com trust score — verified.fyi" /></a>
[![jpmorgan.com trust score](https://verified.fyi/badge/jpmorgan.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/jpmorgan.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating the legitimacy of a major financial institution like JPMorgan Chase, a long-standing digital presence is a huge indicator of trustworthiness. Unlike smaller or newer digital-first companies that might struggle for visibility, a behemoth like JPMorgan operates with an established online identity that has been meticulously maintained for decades. The domain's creation date back in 1992 isn't just an arbitrary number; it signifies a continuous, professional operation in the digital space since the internet's early days. This kind of longevity is almost impossible for fraudulent entities to replicate, as they typically have much shorter lifespans. For a financial website, security is non-negotiable. JPMorgan.com excels here, employing advanced security protocols like TLS 1.3 and HSTS, which are essential for safeguarding sensitive user data during transactions and interactions. These are not optional extras but fundamental components expected of any legitimate bank. Furthermore, the website's infrastructure, including sophisticated email authentication (SPF and DMARC), demonstrates a commitment to preventing phishing attempts and securing communication, protecting both the bank and its customers from common cyber threats. Any website handling financial data without these layers of protection should raise immediate red flags, but jpmorgan.com clearly prioritizes these critical safeguards.