What Is WeTransfer.com?
WeTransfer (wetransfer.com) is a website for uploading files and sending/sharing them with others. WeTransfer is one of the simplest methods for sending and sharing large file sizes over the internet. WeTransfer was founded in 2009 and is based in Amsterdam, Netherlands. As of December 2022, the site wetransfer.com gets an estimated 109.3 million monthly views, according to SimilarWeb. The Wayback Machine estimates wetransfer.com was founded on September 20, 2003. WeTransfer was crawled by the Wayback Machine for a minimal amount in 2003 and then not again until late 2009. Since 2009, the crawling has been steady and growing slightly each year, suggesting traffic has been in steady growth since 2009.
Website: https://wetransfer.com/
Is WeTransfer.com Safe?
I conducted a series of malware tests to find out if wetransfer.com is safe and legit. Here are the results:
I installed the Malwarebytes Browser Guard on my Edge browser and was able to browse the site wetransfer.com without any issues.
To check this further I ran malware scans with Malwarebytes and Spybot on my computer after browsing the site wetransfer.com and they returned no malware detection. I also ran a system-wide scan with Microsoft Defender and no malware was found.
To try to confirm that the site is clean, I also checked the site wetransfer.com on the online malware scanner Sucuri and it returned with no issues. You can see the same here: https://sitecheck.sucuri.net/results/wetransfer.com
Sucuri says the site wetransfer.com doesn’t have malware and that no associated security vendor has blacklisted the domain. Sucuri’s assessment of the site wetransfer.com is that it is a low security risk, aka it is safe.
Some hardening improvements could be made such as adding a website firewall and solving the missing security headers listed below:
Missing security header for ClickJacking Protection. Alternatively, you can use Content-Security-Policy: frame-ancestors ‘none’. Affected pages:
https://wetransfer.com/404javascript.js
https://wetransfer.com/404testpage4525d2fdcMissing security header to prevent Content Type sniffing. Affected pages:
https://wetransfer.com/404javascript.js
https://wetransfer.com/404testpage4525d2fdcMissing Content-Security-Policy directive. We recommend to add the following CSP directives (you can use default-src if all values are the same): script-src, object-src, base-uri, frame-src
However, these hardening improvements don’t change the overall grade of the scan from being a low security risk.
Lastly, I ran a malware scan with VirusTotal on the domain wetransfer.com and no security vendor has flagged the domain as malicious. You can see the same here: https://www.virustotal.com/gui/domain/wetransfer.com
In conclusion, the site wetransfer.com doesn’t have malware and isn’t blacklisted according to Sucuri. Moreover, VirusTotal shows no security vendors have flagged the domain as malicious. It does have a slightly negative community score rating; however, overall the site wetransfer.com is likely safe.