Is wordpress.com legit?

83
/ 100
Trusted
Industry: Hosting & Domains

WordPress.com is a well-established and generally trustworthy platform with strong infrastructure and good security practices. However, the unexpected amount of hidden content raises a moderate concern regarding transparency.

Hosting & Domains average: 77/100 · based on 38 sites

Checked: April 21, 2026 at 5:19 PM UTC

Is wordpress.com a scam? Here's what we found.

Security 95/100

The site uses a modern TLS 1.3 encryption with a valid certificate from Let's Encrypt and enforces HTTPS, indicating robust security for user connections. Google Web Risk also confirms no immediate threats.

Identity 90/100

With a 26-year-old domain registered through a professional registrar and public WHOIS information, WordPress.com demonstrates a clear and long-standing online identity.

Reputation 85/100

As one of the most highly ranked global websites with a long history and clean DNS blacklists, its reputation is strong, even with a lack of Trustpilot presence.

Transparency 70/100

While contact info, legal pages, and social media links are present, the significant number of hidden elements is a red flag that hinders complete transparency about the site's content.

Compliance 90/100

The site provides essential legal safeguards by having readily available privacy policy and terms of service pages, which is crucial for user trust and regulatory adherence.

Infrastructure 90/100

The robust infrastructure includes multiple IP resolutions, proper email authentication (SPF/DMARC), and responsive operation, ensuring reliable service and communication.

Signals Detected

[+]
Tranco Rank: Rank #98

This is one of the most visited websites globally

[+]
Structured Data: Found

Site uses structured data identifying itself as: Organization, WebSite, BreadcrumbList

[?]
Trustpilot: No Trustpilot profile

This business has no Trustpilot presence — not unusual for smaller or newer companies

[+]
Domain Age: 26 years, 6 months

Domain created 2000-03-03T12:13:23Z (26 years, 6 months ago)

[?]
Registrar: MarkMonitor Inc.

Registered through MarkMonitor Inc.

[+]
Domain Expiry: 2033-03-03T12:13:23Z

Expires in 2507 days

[+]
DNSSEC: unsigned

DNSSEC status from WHOIS

[~]
Hidden Content: 14 hidden elements

Excessive hidden content found — may indicate cloaking or deceptive content

[+]
SSL Certificate: Valid

Valid certificate, expires in 46 days

[?]
Certificate Issuer: Let's Encrypt

Certificate issued by Let's Encrypt

[+]
TLS Version: TLS 1.3

Connection uses TLS 1.3

[+]
DNS Resolution: 2 IP(s)

Resolves to: 192.0.78.9, 192.0.78.17

[+]
Email (MX Records): 2 record(s)

Mail servers: mx-ams.automattic.com., mx-dfw.automattic.com.

[+]
SPF Record: Present

Domain has SPF email authentication configured

[+]
DMARC Record: Present

Domain has DMARC email authentication configured

[?]
Name Servers: 4 server(s)

DNS providers: ns4.wordpress.com., ns2.wordpress.com., ns1.wordpress.com., ns3.wordpress.com.

[+]
Branding: Complete

Site has custom branding and social media metadata

[+]
robots.txt: Present

robots.txt has 45 directives and references a sitemap

[?]
Sitemap: 1 pages

Sitemap found with 1 entries

[+]
HSTS Header: Present

Site enforces HTTPS via HSTS

[+]
Clickjacking Protection: Present

X-Frame-Options: SAMEORIGIN

[?]
Server: nginx

Web server: nginx

[+]
Google Web Risk: Clean

No threats detected by Google Web Risk

[+]
Website Status: Online

Website is live and responding

[+]
Contact Info: Found

Website appears to have contact information

[+]
Legal Pages: Privacy & Terms found

Website has both privacy policy and terms of service pages

[+]
Social Media Presence: 5 platforms

Website links to multiple social media platforms

[+]
DNS Blacklists: Clean

Not found on any DNS blacklists

[?]
Web Archive: Unable to check

Could not query Wayback Machine

[?]
Certificate Transparency: Unable to check

Could not query certificate transparency logs

[+]
Page Load Time: 143ms

Fast page load

Embed This Badge

Own this site? Show visitors your trust score.

Trust badge for wordpress.com
<a href="https://verified.fyi/review/wordpress.com"><img src="https://verified.fyi/badge/wordpress.com?size=medium&style=full&theme=dark" alt="wordpress.com trust score — verified.fyi" /></a>
[![wordpress.com trust score](https://verified.fyi/badge/wordpress.com?size=medium&style=full&theme=dark)](https://verified.fyi/review/wordpress.com)

Stay Safe Online

Good habits to protect yourself, no matter the scan result.

Use a password manager

Never reuse passwords across sites.

Enable two-factor authentication

Add a second layer of security to your accounts.

Check before you buy

Always verify unfamiliar stores before entering payment info.

When evaluating a platform like WordPress.com, which serves millions of websites globally, it's crucial to understand what makes it a cornerstone of the internet. As a leading website and blog hosting provider, WordPress.com’s foundational strength lies in its profound history, robust infrastructure, and transparent operational practices. For a site in the 'Hosting & Domains' industry, age is often synonymous with stability and reliability. WordPress.com's 26-year domain history is a significant indicator of its enduring presence and ability to adapt to the evolving digital landscape. This longevity, coupled with its top global traffic ranking, demonstrates a platform that has consistently met user needs and maintained trust over decades. While the presence of hidden elements might initially raise an eyebrow, for a complex platform of this scale, it often relates to technical functions or search engine optimization that aren't user-facing, rather than malicious intent. However, it's always good for users to be aware of what's happening under the hood. For those considering using WordPress.com, its strong security measures, including modern TLS and Google's clean bill of health, mean your data and visitors are well-protected. The platform's commitment to basic legal compliances, like providing privacy policies and terms of service, is standard for the industry and assures users their rights are addressed. While the Trustpilot score isn't perfect, it's important to remember that such platforms often attract reviews from users experiencing specific issues, and a 3.6/5 for a service of this magnitude is generally acceptable. Focus on reviewing their service-level agreements and support offerings, as these are critical for any hosting provider.