MalwareTips
Security Review

Is wetransfer.com legit or a scam?

Our verdict:Safe· 91/100

Legitimate file-transfer service with 18+ years of history, formal business registration, and clean security scans; phishing impersonators exist but this is the official domain.

Why we trust it
Domain age of 18.5 years with consistent business registration in Netherlands and UK.Zero detections across 92 antivirus engines and clean browser blocklists.Hosting IP has zero abuse reports and clean reputation.
wetransfer.comScanned 2d ago
Post Facebook
0
Trust score
SAFE
Heuristics 99·MT 88
View density

Analysis Summary

Threat Intelligence
0/92
All engines report clean
Domain Age
19 years old
Registered Dec 14, 2007
MT Intelligence
Safe
Low likelihood · 98% confidence
SAFE

No threats detected

All checks passed. This site appears legitimate — but always stay alert for phishing even on trusted domains.

Website Preview

Screenshot of wetransfer.com
LIVE RENDER
wetransfer.com

Automated page render — captured in a safe sandbox. What an ordinary visitor would see when loading the site.

MT Intelligence

Advanced threat intelligence
MT Security Analyst
Low scam likelihoodengineMT · Guardiantrust88/100
MT AgentLive web researchVisual inspection
0%
Confidence
WeTransfer.com is the official domain of WeTransfer B.V., a Dutch company incorporated in 2010 and formally registered with the Netherlands Chamber of Commerce (KVK 34380998). The domain has existed for 6,753 days (approximately 18.5 years), matching the company's founding timeline. Our antivirus network flagged zero detections across 92 engines, the hosting IP has zero abuse reports, and SSL is valid. Business registration data confirms active status in both the Netherlands and UK Companies House. The evidence package documents that while phishing emails impersonating WeTransfer are common, the legitimate service is well-established and widely used. Recent privacy concerns about 2025 terms-of-service changes reflect legitimate user debate about content rights, not fraud. The page currently shows a loading error ("couldn't load some important parts"), which is consistent with a JavaScript single-page app experiencing temporary rendering issues, not a sign of abandonment or malice.
Full dossier
Analysis complete

Page Content

The page title and meta description accurately describe WeTransfer's core function: fast, secure file transfer without account requirements. The current page state shows a loading error message, which indicates the JavaScript app encountered a temporary rendering issue rather than a non-functional or parked domain. This is typical for single-page applications when external resources are blocked or network conditions are poor.

Infrastructure

The domain is hosted on IP 13.35.107.38 (Amazon infrastructure) with a valid SSL certificate issued by Amazon. The IP has zero abuse reports and a clean reputation score. WHOIS records show the domain is registered with Key-Systems GmbH and is not privacy-protected, allowing full transparency of ownership.

Domain History

WeTransfer.com has been registered for 6,753 days (approximately 18.5 years), aligning with the company's 2009 founding date in Amsterdam. The domain shows no signs of recent re-registration, typosquatting, or homoglyph attacks. Business registration confirms WeTransfer B.V. is an active Dutch entity (KVK 34380998) and is also registered as an overseas entity in the UK (Companies House FC039105).

Web Reputation

The evidence package confirms WeTransfer is a legitimate, widely-used service with 80M+ monthly users. Phishing scams impersonating WeTransfer via fake emails are documented by security researchers (Norton, Techfinitive, ExchangeDefender), but these target users via email spoofing, not through the official domain. Reddit users and Norton both confirm the service is legitimate for file transfer. Recent complaints focus on subscription and terms-of-service changes, not fraud or security breaches of the platform itself.

Risk Factors
3
  • Phishing emails impersonating WeTransfer notifications are common; users should verify sender addresses end in @wetransfer.com and avoid clicking links in unsolicited emails.
  • 2025 terms-of-service update grants WeTransfer broad rights to user content for AI training, raising privacy concerns for some users.
  • Page currently displays a loading error, though this reflects a temporary rendering issue rather than a security or functionality problem.
Positive Signals
5
  • Domain age of 18.5 years with consistent business registration in Netherlands and UK.
  • Zero detections across 92 antivirus engines and clean browser blocklists.
  • Hosting IP has zero abuse reports and clean reputation.
  • Formal business registration as WeTransfer B.V. (KVK 34380998) with active status.
  • Widely documented as a legitimate service by security researchers, Reddit, and Wikipedia; 80M+ monthly users.
AI Recommendation
WeTransfer.com is safe to use for file transfer. Be cautious of unsolicited emails claiming to be from WeTransfer — verify the sender address ends in @wetransfer.com and avoid clicking links in unexpected notifications. Review the 2025 terms-of-service update if you have privacy concerns about content rights.
Next-gen fraud intelligence
Evidence-backedCross-checked

Web Research Findings

Our live research agent queries scam-report databases, consumer-review sites, news coverage, and general web search for wetransfer.com, then cross-checks business-registration records and look-alike domain patterns. Everything below is pulled from what it actually found.

Domain age
18 yrs
Registered Dec 2007
Business registration
Active · Netherlands
Site traces back to an actively registered business.
Clone check
Not a clone
No well-known site's layout or branding detected here.
Typosquat check
No look-alike match
The domain doesn't resemble any well-known brand's spelling.
Web mentions
3 scam reports · 3 positive
Key findings
7 headline facts from open-web research
  • wetransfer.com is the official domain of WeTransfer B.V., a Dutch company founded in 2009 in Amsterdam, acquired by Bending Spoons in 2024, with 80M+ monthly users.
  • Company is formally registered as active in the Netherlands (KVK 34380998) and listed on UK Companies House as an overseas entity.
  • The legitimate service is frequently impersonated in phishing emails that spoof WeTransfer notifications to deliver malware or steal credentials; real emails come from @wetransfer.com.
  • A 2019 security incident occurred where some transfer notification emails were sent to incorrect recipients; WeTransfer notified affected users.
  • Trustpilot rating referenced as low (around 1.3/5 in some reports) with complaints focused on subscriptions, free trial issues, and recent terms-of-service changes regarding content rights.
  • 2025 terms update granting WeTransfer broad rights to user content (including for AI training) sparked significant backlash and privacy concerns on Reddit and tech blogs.
  • Domain age of 6753 days (~18.5 years) aligns with founding date; no evidence of the domain itself being a scam or typosquat.
Scam reports (3)
Direct quotes from public scam databases, forums, and news.
  • Nortonopen

    "One of the most common WeTransfer scams is in the form of phishing messages. In this scam, cybercriminals impersonate WeTransfer by sending fake emails that look like real file transfer notifications."

  • Techfinitiveopen

    "The service is also a common target for fraudsters, who create fake WeTransfer emails to get people to click on malicious links."

  • ExchangeDefenderopen

    "Hackers Use Fake WeTransfer Emails to Steal Your Information. Scammers love it... lead you to sketchy sites designed to steal your email login, personal info, or even infect your computer with malware."

Positive reviews (3)
Quotes indicating the site is legitimate.
  • Reddit r/Scamsopen

    "Wetransfer is totally legit. It's a file forwarding cloud platform similar to but way better than dropbox."

  • Nortonopen

    "WeTransfer is generally safe for transferring non-sensitive files."

  • Wikipediaopen

    "WeTransfer B.V. is a Dutch Internet-based computer file transfer service company that was founded in 2009 and based in Amsterdam. In 2024, the company was acquired by Bending Spoons."

Business registration
Status: active · Netherlands

WeTransfer B.V., KVK 34380998, incorporated 2010, Amsterdam. Acquired by Bending Spoons in 2024. UK Companies House overseas registration FC039105, active.

Research summary
Narrative write-up from our AI analyst, grounded on the facts above

Our research found three documented phishing scams that impersonate WeTransfer through fake email notifications designed to steal credentials or deliver malware — but these target users via email spoofing, not through the official domain. Norton and Techfinitive both confirm these are common social-engineering attacks, not breaches of WeTransfer itself. Positive sources (Reddit, Norton, Wikipedia) confirm WeTransfer B.V. is a legitimate Dutch company founded in 2009, acquired by Bending Spoons in 2024, and serves 80M+ monthly users. Business registration data confirms active status in the Netherlands (KVK 34380998) and UK (Companies House FC039105). Recent user complaints on Reddit and tech blogs focus on 2025 terms-of-service changes that grant WeTransfer broad rights to user content for AI training — a legitimate privacy concern, not evidence of fraud.

Antivirus Engines

Clean pass · verified
Clean across 92 engines

We cross-check every URL against our antivirus network of 92 malware and blacklist engines. None of them flagged this URL in the last scan.

0Malicious0Suspicious63Harmless92Engines
Clean
Kaspersky
Clean
Bitdefender
Clean
Microsoft
Not in pass
ESET-NOD32
Not in pass
Avira
Not in pass
Sophos
Clean
Fortinet
Clean
Google Safebrowsing
Clean
Emsisoft
Clean

No engine detections. The URL passed every antivirus and blacklist engine we queried in this scan. Stay vigilant — AV coverage is only one signal among many.

Security Scans

Blacklist Check
Not flagged on major threat lists

Checked against the major public blocklists used by browsers and security tools — no hits.

Contact Verification

We fetched the page and looked for real-world contact details. Legitimate businesses almost always publish an email on their own domain, a phone number, and a postal address. Scam shops usually don't.

What We Found
No clear contact details on the page
Emails on site's domainNone
Phone numbersNone
Postal addressNot listed
Linked social profiles0
Signal Summary
Several contact red flags
  • No contact email found anywhere on the page.
  • No phone number listed on the page.
  • No postal address visible on the page.

Domain & Encryption

Domain History
Age19 years old
RegistrarKey-Systems GmbH
RegisteredDec 14, 2007
ExpiresDec 14, 2026
Owner privacyVisible
Encryption Certificate
StatusValid
ProtocolTLSv1.3
IssuerAmazon · Amazon RSA 2048 M01
ExpiresSep 21, 2026 (102d)
Self-signedNo
Hosting & Technology
HostingAmazon.com, Inc.
Server locationUS
PopularityTop 100k worldwide

Redirect Chain

Hops
1
Cross-domain
No
Lookalike
No
Punycode
No
  • 1301http://wetransfer.com/
  • 2200https://wetransfer.com/

Server Reputation

Abuse Intelligence
Confidence score0%
Reports on file0
ISPAmazon.com, Inc.
Usage typeData Center/Web Hosting/Transit

Still, stay alert

No major threat indicators — but a clean scan does not guarantee every page is safe, and phishing emails routinely spoof real domains.

  • Double-check the exact URL in your address bar

    Confirm you are actually on wetransfer.com and not a lookalike like w-etransfer.com.com or an IDN homoglyph.

  • Use a password manager

    Password managers only auto-fill on the exact domain they were saved for — they refuse to fill lookalike domains, which is the single best phishing defence.

  • Discuss this site on the forum

    If you have first-hand experience with this site — good or bad — share it with the MalwareTips community.

    Open

Reputation Sources

How this domain rates across independent threat-intelligence and blocklist providers.

Google Safe Browsing
Not listedCheck ↗
VirusTotal
Not listedCheck ↗
AbuseIPDB
Not listedCheck ↗
Also verify:Spamhaus ↗DNSBL / SURBL ↗PhishTank ↗

Referenced Domains

Outbound domains this page links to or loads resources from. Each links to its own security scan.

fonts.googleapis.comc.amazon-adsystem.coms.pinimg.com

Safety FAQ

Common questions about this site, answered directly from the scan data above — so the answers always reflect the latest verdict on this page.

  • Our automated security review found no threat indicators on wetransfer.com. The site appears legitimate based on the signals we checked, but always stay alert for phishing emails that spoof real domains.
  • wetransfer.com passed our automated security checks with a trust score of 91/100. No antivirus engines or major blacklists flagged the site at the time of the last scan.
  • Yes. wetransfer.com presents a valid TLSv1.3 certificate issued by Amazon · Amazon RSA 2048 M01, expiring in 102 days. Note that SSL only encrypts the connection — it does not guarantee that the site itself is trustworthy.
  • wetransfer.com is 18.5 years old, registered on 12/14/2007 through Key-Systems GmbH. Scam domains are often freshly registered — a site under 6 months old warrants extra caution.
  • No. All 92 antivirus engines in our malware network report wetransfer.com as clean.
  • No. wetransfer.com is not currently listed on the major browser blocklist feeds that modern browsers use.
  • wetransfer.com resolves to an IP operated by Amazon.com, Inc. in US (usage type: Data Center/Web Hosting/Transit). Hosting location alone doesn't make a site good or bad, but unusual geography for a brand's claimed country is one of many signals we weigh.
  • Yes. wetransfer.com sits in the global top-100k on Cloudflare Radar, which means it has substantial real-world traffic. That does not automatically make it safe, but established brands almost always rank here and throwaway scam domains almost never do.

Final Verdict

0
Trust / 100
Final Verdict·wetransfer.com
SAFE

WeTransfer is a legitimate Dutch file-transfer company founded in 2009, formally registered and acquired by Bending Spoons in 2024. The domain is clean across all security scans, has 18+ years of history, and serves 80M+ monthly users. Phishing scams impersonating WeTransfer exist, but this is the official site.

WeTransfer.com is safe to use for file transfer. Be cautious of unsolicited emails claiming to be from WeTransfer — verify the sender address ends in @wetransfer.com and avoid clicking links in unexpected notifications. Review the 2025 terms-of-service update if you have privacy concerns about content rights.

AV engines
92
MT passes
2
Net signals
0
Scan another URL
Security review completemalwaretips.com/url-scan
Recently scanned

Other Safe reports

Browse all reports
Safetrust76
ashishtiwari.net
35m ago
Read the review
Safetrust68
adhirajmishra.vercel.app
37m ago
Read the review
Safetrust81
qrlynx.com
2h ago
Read the review
Safetrust95
radar.cloudflare.com
2h ago
Read the review
Safetrust81
video.sibnet.ru
2h ago
Read the review
Safetrust95
103.171.246.117
2h ago
Read the review
Safetrust85
aryion.com
3h ago
Read the review
Safetrust87
memory-graph.com
3h ago
Read the review
Safetrust82
api.viginet.net
4h ago
Read the review
Safetrust77
gasspring.co.kr
5h ago
Read the review
Safetrust90
ccis.edu.in
5h ago
Read the review
Safetrust85
contributiregione.it
5h ago
Read the review
Community review

User reviews & comments(0)

Share your experience — "Lost $200 on a fake checkout" is more useful than "Scam". Your review helps others avoid traps.

Loading…
Loading comments…
This report is generated automatically by combining threat intelligence, domain signals, and an AI security analyst. It is informational, not legal advice. Always use your own judgement before sharing personal information or money online.