📜 Companies without DNS CAA records

Name: Companies without DNS CAA records
Creator: LynxRadar
Keywords: companies without CAA records, DNS CAA adoption, certificate authority authorization

These domains have no CAA records, meaning any Certificate Authority in the world can issue SSL certificates for them.

Companies affected

2378

Total scanned

Prevalence

Domain

Score

Tier

CAA Status

plyprd.grupoib.local

38/100

Fail

Not configured

qipu.prd.interbank.per

38/100

Fail

Not configured

infowars.com

55/100

Fail

Not configured

epvw.fa.us6.oraclecloud.com

62/100

Conditional

Not configured

hq1.appsflyer.com

62/100

Conditional

Not configured

+33 more companies

This dataset is available on request. Leave your work email and we'll send you the full list within 24 hours.

No spam — we only use this to send you the data

Request received

We'll send the full dataset to your inbox shortly. Keep an eye out for an email from the LynxRadar team.

Which companies don't have DNS CAA records?

CAA (Certificate Authority Authorization) DNS records specify which Certificate Authorities are permitted to issue certificates for a domain. Without CAA, any of the hundreds of public CAs can issue a certificate, increasing the risk of unauthorized or misissued certificates that could be used in man-in-the-middle attacks.

LynxRadar scanned 2378 domains including Fortune 500 companies and Y Combinator startups. Of those, 38 (2%) were found to have this security gap. The data above is updated continuously as new domains are scanned. Scan any domain to check its status.

Frequently Asked Questions

Why do CAA records matter?

CAA records restrict which Certificate Authorities can issue SSL certificates for your domain. Without them, any CA could issue a certificate, including those compromised or controlled by an attacker.

How many companies are missing CAA records?

In LynxRadar's scan of 2378 domains, 38 (2%) had no CAA records configured.