Is trezor.io legit?

78
/ 100
Mostly Safe
Industry: Crypto

This website is mostly safe, demonstrating strong infrastructure and reputation signals typical of an established entity. However, some common e-commerce red flags like unrealistic discounts and non-reversible payment methods warrant caution, alongside a high number of external scripts that could pose a security risk.

Crypto average: 79/100 · based on 25 sites

Checked: April 29, 2026 at 8:07 PM UTC

Is trezor.io a scam? Here's what we found.

Security 75/100

The site uses modern TLS 1.3 with a valid certificate, and Google Web Risk shows no threats. However, 27 external scripts add significant risk, and the certificate expiring in 34 days needs immediate attention to maintain secure connections.

Identity 80/100

The domain is nearly 12 years old and complete branding indicates a well-established company with a clear identity. The unrealistic discounts are a significant concern that detracts from the otherwise strong identity.

Reputation 85/100

With a high Tranco rank and clean DNS blacklists, the site enjoys a good reputation. The absence of a Trustpilot profile is not a strong indicator for established businesses, and the domain's age reinforces trust.

Transparency 90/100

The site provides contact information, legal pages, and a robust social media presence, promoting clear communication and accountability.

Compliance 70/100

Legal pages for privacy and terms are present. However, the use of non-reversible payment methods, while common for certain products, introduces consumer protection concerns that impact compliance with common best practices.

Infrastructure 95/100

Excellent infrastructure with multiple DNS records, robust email authentication (SPF, DMARC), Cloudflare nameservers, and DNSSEC. The server is consistently online and loads quickly, indicating a professionally managed setup.

Signals Detected

[+]
Tranco Rank: Rank #9630

This is a well-known, high-traffic website

[+]
Structured Data: Found

Site uses structured data identifying itself as: WebSite

[~]
Unrealistic Discounts: Found

Site advertises discounts over 70% — common in fraudulent e-commerce

[~]
Payment Red Flags: 2 flag(s)

Mentions non-reversible payment methods: bitcoin, wire transfer

[~]
External Scripts: 27 scripts

Excessive number of external scripts — may indicate malicious injection

[+]
SSL Certificate: Valid

Valid certificate, expires in 34 days

[?]
Certificate Issuer: Let's Encrypt

Certificate issued by Let's Encrypt

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
DNS Resolution: 4 IP(s)

Resolves to: 2606:4700:10::ac42:86f5, 2606:4700:10::ac42:896f, 172.66.134.245, 172.66.137.111

[+]
Email (MX Records): 5 record(s)

Mail servers: aspmx.l.google.com., alt1.aspmx.l.google.com., alt2.aspmx.l.google.com., aspmx2.googlemail.com., aspmx3.googlemail.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[+]
Name Servers: 2 server(s)

DNS providers: jeff.ns.cloudflare.com., lucy.ns.cloudflare.com.

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
robots.txt: Present

robots.txt has 16 directives and references a sitemap

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Content Security Policy: Present

Site has Content Security Policy configured

[+]
Clickjacking Protection: Present

X-Frame-Options: DENY

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Domain Age: 11 years, 11 months

Domain created 2014-07-21T08:45:45Z (11 years, 11 months ago)

[?]
Registrar: Cloudflare, Inc

Registered through Cloudflare, Inc

[+]
Domain Expiry: 2028-07-21T08:45:45Z

Expires in 813 days

[+]
DNSSEC: signedDelegation

DNSSEC status from WHOIS

[?]
Sitemap: Not found

No sitemap found — common for smaller sites

[?]
Certificate Transparency: Unable to check

crt.sh returned status 502

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 4 platforms

Website links to multiple social media platforms

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[+]
Page Load Time: 59ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for trezor.io
<a href="https://verified.fyi/review/trezor.io"><img src="https://verified.fyi/badge/trezor.io?size=medium&style=full&theme=dark" alt="trezor.io trust score — verified.fyi" /></a>
[![trezor.io trust score](https://verified.fyi/badge/trezor.io?size=medium&style=full&theme=dark)](https://verified.fyi/review/trezor.io)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

Navigating the crypto space means being diligent about where you store your assets. Trezor.io, a well-known name in hardware wallets, presents a largely trustworthy profile. Unlike many fly-by-night operations in the crypto world, Trezor benefits from a long history, with its domain active for nearly twelve years, and transparent ownership under SatoshiLabs Group a.s. This level of longevity and openness is a significant green flag for a company dealing with digital security. However, potential buyers should still exercise some caution. When evaluating any e-commerce site, particularly in the crypto sector where scams are prevalent, be wary of 'too good to be true' discounts. Trezor.io advertises discounts over 70%, which is an aggressive marketing tactic that can sometimes be associated with less scrupulous vendors. Additionally, while common for crypto-related transactions, the mention of non-reversible payment methods like bitcoin and wire transfers, without prominent alternative options, could leave consumers with fewer avenues for recourse if a purchase goes wrong. Most reputable hardware wallet providers will offer a range of payment options to cater to diverse customer needs and preferences. Ultimately, Trezor.io's strong technical infrastructure, including robust security protocols and clear branding, suggests a legitimate operation. However, in an industry ripe with scams, it's always wise to scrutinize promotional offers and understand the payment methods being used. Ensure you're buying directly from the official site and not a phishing clone.