This domain points to a Coveo administration panel, but calling it a straightforward SaaS login would be generous. Legitimate enterprise platforms normally display company details, a privacy policy, and terms of service. This one has none of those. There is no about page, no contact information, and the domain has no history in the Wayback Machine. It redirects immediately to a Coveo admin login, which matches what an internal tool would do, but red flags remain. For a site that could handle account credentials or company data, the lack of transparency is a real problem. If you reached this page through an email link or an unexpected redirect, treat it with caution. A real Coveo administrator would likely access the platform through a verified company portal, not an obscure subdomain without any identifying information. Before entering any credentials, confirm the URL with your IT team directly. This is not the kind of address you want to log into without knowing exactly who put it in front of you.
No — wolseleycanadaproduction4v035tgc.org.coveo.com doesn't look safe
In plain English
This site looks like an internal Coveo admin panel, but it lacks basic transparency and compliance protections you'd expect from any business tool. There's no way to identify who runs it, no contact info, and no privacy policy. Even though the security setup is decent, the total anonymity and redirect behavior make it hard to trust for any kind of login or data entry.
What you should do now
Don't panic. These steps limit the damage, and the sooner you take them the better.
Don't enter any details
No passwords, card numbers or personal information — even if the site looks professional.
Close the tab
Especially if you got here from an email, text message or social media ad.
Already paid? Call your bank
Contact your bank or card provider right away. They can often stop or reverse a recent payment.
Warn others
Report the site and share this check with anyone who sent you the link.
Where the score comes from
Strong security posture with modern TLS, enforced HTTPS, clickjacking protection, and a content security policy. No threats detected by Google Web Risk.
The domain is a subdomain of coveo.com and appears to be an internal or staging address. WHOIS doesn't return a match for this subdomain, which is typical for subdomains of larger companies but offers no direct ownership clarity.
No blacklist history and a clean Google Safe Browsing check are good signs. But the site isn't indexed in the Wayback Machine at all, which suggests this is a very recent or ephemeral address.
No about page, no contact information, and no social media presence. The site redirects to a Coveo admin login page, which is consistent with an internal tool but provides zero transparency about who runs it.
Missing privacy policy and terms of service. For a site that handles administrative logins to a SaaS platform, legal pages are expected. Their absence is a real gap here.
Hosted on AWS CloudFront with good performance, valid SSL, and a configured robots.txt. No email handling is set up, which is normal for a subdomain that doesn't send mail.
What we checked
Think this verdict is wrong?
Site owners can request a fresh scan. Scores update automatically as signals change.