MalwareTips
Security Review

Is mimecast.com legit or a scam?

Our verdict:Safe· 96/100

Mimecast.com is the long-standing official domain of a major global cybersecurity provider with over two decades of established history.

Why we trust it
Domain has been registered and active for over 23 years.Zero detections across 92 antivirus engines in our network.Verified business registration for MIMECAST SERVICES LIMITED in the UK.
mimecast.comScanned 1h ago
Post Facebook
0
Trust score
SAFE
Heuristics 99·MT 95
Technical red flags (1)
Tech-Support Scam
Warning signals (1)
Redirects to another domain
View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
23 years old
Registered Feb 20, 2003
MT Intelligence
Safe
Low likelihood · 98% confidence
SAFE

No threats detected

All checks passed. This site appears legitimate — but always stay alert for phishing even on trusted domains.

Website Preview

Screenshot of mimecast.com
LIVE RENDER
mimecast.com

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Low scam likelihoodengineMT · Guardiantrust95/100
MT AgentLive web researchVisual inspection
0%
Confidence
Our analysis confirms this is the legitimate corporate domain for Mimecast, a well-known security vendor founded in 2003. The domain registration is over 8,500 days old and is managed by a reputable corporate registrar. Technical scans show a valid SSL certificate and a clean reputation across our entire antivirus network. While some automated signals flagged a tech-support pattern, our research confirms these are false positives caused by the site's legitimate support and login portals. The company is a registered legal entity in the UK with high trust ratings on professional review platforms.
Full dossier
Analysis complete

Page Content

The website serves as the primary hub for Mimecast's enterprise security solutions, including AI-powered email protection and data governance. It features professional corporate branding, clear executive leadership information, and links to official support and partner portals.

Infrastructure

The site is hosted on a stable IP address with no history of abuse reports. It utilizes high-grade encryption with a DigiCert SSL certificate and integrates with standard enterprise tools like Zendesk for customer support.

Domain History

Registered in 2000, the domain has a massive historical footprint that aligns perfectly with the company's growth. It is registered to Mimecast Services Limited through MarkMonitor, a registrar typically used by large global brands to protect their digital assets.

Web Reputation

The company maintains strong ratings on professional software review sites, with hundreds of verified users praising its threat remediation capabilities. Although some news reports mention threat actors abusing Mimecast's features for phishing, these are external attacks targeting the platform's users, not evidence of the domain itself being malicious.
Risk Factors
2
  • Automated systems occasionally misidentify legitimate support portals as tech-support scams.
  • Threat actors sometimes impersonate this brand in phishing emails to steal user credentials.
Positive Signals
5
  • Domain has been registered and active for over 23 years.
  • Zero detections across 92 antivirus engines in our network.
  • Verified business registration for MIMECAST SERVICES LIMITED in the UK.
  • High traffic volume and established presence in the global top-100k sites.
  • Positive professional reviews on Gartner and G2 from verified IT administrators.
AI Recommendation
This is a safe and legitimate business website. You can proceed with using their services or logging into your official Mimecast account.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for mimecast.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
23 yrs
Registered Feb 2003
Business registration
Active · United Kingdom
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
2 scam reports · 3 complaints · 3 positive
Key findings
7 headline facts from open-web research
  • mimecast.com is the official website of Mimecast, a legitimate UK-based cybersecurity company founded in 2003 specializing in email security, archiving, continuity, and human risk management.
  • MIMECAST SERVICES LIMITED is an active private limited company (no. 04901524) incorporated on 16 Sep 2003, registered at 1 Finsbury Avenue, London EC2M 2PF, UK.
  • The company publishes its own threat intelligence reports on phishing campaigns that impersonate Mimecast or abuse its URL rewriting/linking features (e.g., protect.mimecast.com domains used in phishing).
  • Trustpilot shows a low score of 2/5 from 25 reviews; Gartner rates the product 4.5/5 from 693 reviews and G2 4.3/5 from 470 reviews.
  • Reddit discussions (r/sysadmin, r/mimecast) contain mixed feedback: praise for support in some threads, complaints about false positives, missed phishing, and phishing simulation platform in others.
  • No direct evidence of mimecast.com itself being a scam, tech-support scam, or fraudulent site; the "Detected scam families: Tech-Support Scam" appears inconsistent with verified sources.
  • Mimecast North America Inc. is not BBB accredited.
Scam reports (2)
Direct quotes from public scam databases, forums, and news.
  • SC Mediaopen

    "Threat actors have exploited cybersecurity firm Mimecast's secure-link rewriting capability to deploy over 40,000 phishing emails mimicking SharePoint and DocuSign"

  • Mimecast Threat Intelligenceopen

    "A credential harvesting phishing campaign using the Mimecast brand. The threat actors use carefully designed secure messages to trick recipients"

Positive reviews (3)
Quotes indicating the site is legitimate.
  • Gartneropen

    "Overall experience with Mimecast Advanced Email Security · “Threat remediation stands out... Helpful onboarding” 4.5 (693 Ratings)"

  • G2open

    "Mimecast has been rated 4.3 stars by 470 verified reviews on G2"

  • Reddit r/sysadminopen

    "Mimecast's support is excellent. They will pick up the phone on a support call quickly and the first line support usually knows their stuff."

Business registration
Status: active · United Kingdom

MIMECAST SERVICES LIMITED, company number 04901524, incorporated 16 September 2003, registered office: Floor 4, 1 Finsbury Avenue, London EC2M 2PF. Active private limited company (IT consultancy activities). US entity Mimecast North America, Inc. also registered.

Research summary
Narrative write-up from our AI analyst, grounded on the facts above
Mimecast is a legitimate UK-based cybersecurity company incorporated in 2003 (Company No. 04901524) with headquarters in London. Independent review aggregators like Gartner and G2 show high trust scores based on over 1,000 verified reviews. While some security news outlets report on phishing campaigns that impersonate the Mimecast brand, these reports confirm that mimecast.com is the legitimate entity being mimicked by fraudsters.

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious60Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbers1 617 393 7000
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No postal address visible on the page.
  • Scam family match: Tech-Support Scam.
  • Phone number listed (1 617 393 7000).

Domain & Encryption

Domain History
Age23 years old
RegistrarMarkMonitor Inc.
RegisteredFeb 20, 2003
ExpiresDec 13, 2032
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerDigiCert Inc · DigiCert Global G2 TLS RSA SHA256 2020 CA1
ExpiresNov 27, 2026 (154d)
Self-signedNo
Hosting & Technology
HostingSQUIXA PTY LIMITED
Server locationAU
PopularityTop 100k worldwide

Redirect Chain

Hops
1
Cross-domain
Yes
Lookalike
No
Punycode
No
  • 1301http://mimecast.com/
  • 2200https://www.mimecast.com/cross-domain

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPSQUIXA PTY LIMITED
Usage typeContent Delivery Network

Still, stay alert

No major threat indicators — but a clean scan does not guarantee every page is safe, and phishing emails routinely spoof real domains.

  • Double-check the exact URL in your address bar

    Confirm you are actually on mimecast.com and not a lookalike like m-imecast.com.com or an IDN homoglyph.

  • Use a password manager

    Password managers only auto-fill on the exact domain they were saved for — they refuse to fill lookalike domains, which is the single best phishing defence.

  • Discuss this site on the forum

    If you have first-hand experience with this site — good or bad — share it with the MalwareTips community.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

unpkg.comgoogletagmanager.commimecastsupport.zendesk.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review found no threat indicators on mimecast.com. The site appears legitimate based on the signals we checked, but always stay alert for phishing emails that spoof real domains.
  • mimecast.com passed our automated security checks with a trust score of 96/100. No antivirus engines or major blacklists flagged the site at the time of the last scan.
  • Yes. mimecast.com presents a valid TLSv1.3 certificate issued by DigiCert Inc · DigiCert Global G2 TLS RSA SHA256 2020 CA1, expiring in 154 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • mimecast.com is 23.4 years old, registered on 2/20/2003 through MarkMonitor Inc.. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report mimecast.com as clean.
  • No. mimecast.com is not currently listed on the major browser blocklist feeds that modern browsers use.
  • mimecast.com resolves to an IP operated by SQUIXA PTY LIMITED in AU (usage type: Content Delivery Network). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Yes. mimecast.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Final Verdict

0
Trust / 100
Final Verdict·mimecast.com
SAFE

Mimecast.com is the official website for Mimecast, a globally recognized cybersecurity firm specializing in email security and human risk management. The domain has been active for over 23 years and is operated by a legitimate, registered business in the United Kingdom. You can safely interact with this site for professional security services.

This is a safe and legitimate business website. You can proceed with using their services or logging into your official Mimecast account.

AV engines
92
MT passes
2
Net signals
1
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Safe reports

Browse all reports
Safetrust93
discord.gg
5m ago
Read the review
Safetrust97
rylkngdm.com
10m ago
Read the review
Safetrust95
nzherald.co.nz
12m ago
Read the review
Safetrust85
adpolznet.o18.click
12m ago
Read the review
Safetrust97
iterable.com
14m ago
Read the review
Safetrust97
tripadvisor.co.uk
15m ago
Read the review
Safetrust92
tynt.com
16m ago
Read the review
Safetrust97
qpic.cn
16m ago
Read the review
Safetrust96
smartsheet.com
17m ago
Read the review
Safetrust81
kemono.wtf
31m ago
Read the review
Safetrust92
digitaltrends.com
1h ago
Read the review
Safetrust95
rs6.net
1h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.