Is who.int legit?

88
/ 100
Trusted
Industry: Government

This site appears to be highly trustworthy. While there are a few minor technical issues like excessive scripts and a misconfigured sitemap, its strong web presence, robust security measures, and clear identity make it a reliable source.

Government average: 80/100 · based on 33 sites

Checked: April 21, 2026 at 4:37 AM UTC

Is who.int a scam? Here's what we found.

Security 85/100

The site has a strong security posture with modern TLS 1.3, HSTS, and a Content Security Policy. The primary concern is the high number of external scripts, which introduces potential vulnerabilities.

Identity 90/100

The Tranco rank indicates a highly visible and established entity. The specific WHOIS information for .int TLDs is often not publicly available, so the check failure here is not a red flag.

Reputation 95/100

With a 27-year history and high Tranco rank, the site demonstrates strong longevity and established reputation. It is also clean on all DNS blacklists and verified by Google Web Risk.

Transparency 95/100

The website provides clear contact information and links to multiple social media platforms, indicating a transparent and accessible organization.

Compliance 95/100

The presence of both privacy policy and terms of service pages demonstrates a commitment to legal and user privacy compliance.

Infrastructure 90/100

The site has solid email authentication with SPF and DMARC. The only minor technical flaw is a misconfigured sitemap, but DNS resolution and overall network performance are good.

Signals Detected

[+]
Tranco Rank: Rank #248

This is one of the most visited websites globally

[+]
Structured Data: Found

Site uses structured data identifying itself as: WebSite, Organization

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[~]
External Scripts: 27 scripts

Excessive number of external scripts — may indicate malicious injection

[?]
Certificate Transparency: Unable to check

crt.sh returned status 429

[+]
SSL Certificate: Valid

Valid certificate, expires in 73 days

[?]
Certificate Issuer: Google Trust Services

Certificate issued by Google Trust Services

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
DNS Resolution: 1 IP(s)

Resolves to: 192.133.11.1

[+]
Email (MX Records): 1 record(s)

Mail servers: who-int.mail.protection.outlook.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 5 server(s)

DNS providers: ns1.wpro.who.int., whqdns1.who.int., ext-dns-2.cern.ch., whqdns2.who.int., whqdns3.who.int.

[+]
robots.txt: Present

robots.txt has 1055 directives and references a sitemap

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Content Security Policy: Present

Site has Content Security Policy configured

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: cloudflare

Web server: cloudflare

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Branding: Complete

Site has custom branding and social media metadata

[?]
whois: check failed

no WHOIS server found for TLD "int"

[?]
Sitemap: Misconfigured

Sitemap URL returns non-XML content

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 5 platforms

Website links to multiple social media platforms

[+]
Web Archive History: 27 years

Earliest archive snapshot from 19981206

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[+]
Page Load Time: 118ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for who.int
<a href="https://verified.fyi/review/who.int"><img src="https://verified.fyi/badge/who.int?size=medium&style=full&theme=dark" alt="who.int trust score — verified.fyi" /></a>
[![who.int trust score](https://verified.fyi/badge/who.int?size=medium&style=full&theme=dark)](https://verified.fyi/review/who.int)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

As a consumer safety journalist, many people ask, "Is who.int legit?" The website for the World Health Organization is indeed legitimate and serves as a critical global health resource. Its extensive reach, evidenced by its top global ranking, means millions rely on it daily for accurate information. When evaluating a public health organization's website, we look for transparent information, robust security, and reliable infrastructure. This site excels in providing clear contact details and essential legal pages like privacy policies, which is paramount for an entity handling sensitive global health data. Trustpilot reviews, while low for this domain, often reflect niche user experiences and might not fully capture the site's overall authoritative standing, especially for a non-commercial entity. For a site of this stature, maintaining a clean security profile is vital. While we noted a higher than average number of external scripts, the site uses modern security protocols and has a clean record with Google Web Risk, indicating active threat monitoring. This balance allows us to classify it as mostly safe. When you visit who.int, you should focus on the quality and official nature of the information provided, which remains its core function and strength, rather than dwelling on minor technicalities that don't compromise its fundamental trustworthiness.