Markets

Equifax has directed followers to fake phishing site for almost two weeks

Equifax has directed followers to fake phishing site for almost two weeks

It was a bad idea to use a standalone website to begin with; tweeting out links to a fake website just makes things worse for the company.

Earlier this month, the credit-reporting company acknowledged that a hack had compromised the personal data of 143 million USA consumers and an unknown number of foreign ones, making it one of the biggest computer-security breaches in history.

For almost two weeks, however, Equifax's official Twitter account has been directing some users to securityequifax2017.com - a fake, copycat version of its help page created by a concerned software developer, rather than the real response website.

After announcing the breach, Equifax directed its customers to equifaxsecurity2017.com, a website where they can enroll in identity theft protection services and find updates about how Equifax is handing the "cybersecurity incident".

The official domain address is "equifaxsecurity2017.com" whereas Sweeting's version is "securityequifax2017.com". In this case, Equifax created a very real site - https://www.equifaxsecurity2017.com - where people can enter their last name along with the last six digits of their social security number to see if they were affected by the hack.

The real Equifax site is unsafe, he said, because of how easy it is to impersonate.




Thankfully for all of us, Sweeting wasn't actually in it to steal information, but rather to shame Equifax even further for creating this credit issue and then leaving victims even more vulnerable to attack with a vulnerable site. "Instead they chose an easily impersonated domain and used a jelly-bean SSL cert that any script kiddie can impersonate in 20min", the fake site adds.

The developer commented on the real threats facing people who choose to continue visiting Equifax's site.

"Tweet to @equifax to get them to change it to equifax.com before thousands of people loose [sic] their info to phishing sites!" He stressed that his site is not malicious and does not store user data. Still, Equifax's team linked out to his page. A WHOIS lookup of the domain shows it was created on September 8, but does not list the owner. He also said: "I can guarantee there are real malicious phishing versions already out there".

On Wednesday, a user reached out to Equifax on Twitter asking for assistance.

What does Equifax have to say about all this?

In an emailed statement, an Equifax representative told Business Insider: "All posts using the wrong link have been taken down".


  • Afghanistan's Ghani Welcomes New US 'Resolve' To Win War In UN Address

    Aung San Suu Kyi's lengthy silence was tragic, as our hopes that an icon of human rights would choose principle over power". Ghani said that the roots of terrorism are outside Afghanistan's borders.
    Starbucks robbery suspect may sue 'Good Samaritan' who subdued him

    Starbucks robbery suspect may sue 'Good Samaritan' who subdued him

    They believe the man who police describe as a hero should face criminal charges and warn their son may file a lawsuit. Flores remains in the Fresno County Jail on charges of second-degree robbery and assault with a deadly weapon.
    Deepika Padukone's look as Rani Padmini from Padmavati out

    Deepika Padukone's look as Rani Padmini from Padmavati out

    The magnum opus presented by Viacom 18 Motion Pictures and Bhansali Productions will have music composed by the filmmaker himself. Keeping the promise, the makers have now released the first look, and it has become the trending topic on social media.
  • Mockery Attack! Huawei Takes a Bite at Apple iPhone X

    She considers the iPhone 8 a solid choice for those upgrading from a much older device, such as the iPhone 6s. At the end of the day, if the iPhone X is overpriced, it will be reflected in underwhelming sales.
    Richard Branson: Bad Hurricane Season 'Start of Things to Come'

    Richard Branson: Bad Hurricane Season 'Start of Things to Come'

    THE Queen has sent a message to the residents of the British Virgin Islands wishing them well, it has emerged today. The cost, Branson believes, is all thanks to climate change.
    GOP Health Care Proposals Lack Even 'Common-Sense Rationale,' Obama Says

    GOP Health Care Proposals Lack Even 'Common-Sense Rationale,' Obama Says

    Obama has rarely publicly engaged in the day-to-day Washington policy fights since Trump replaced him in January. He noted that there is no " demonstrable economic, actuarial, or even human rationale for pushing such a bill".
  • Fed will start to trim its huge bond portfolio

    Fed will start to trim its huge bond portfolio

    Treasury bonds and mortgage-backed securities acquired in the years after the 2008 financial crisis. The Fed, as expected, also said it would begin in October to reduce its holdings of U.S.

    Bank stocks stand out as quick winners of Fed's latest move

    In overseas trading, stock markets across the Asia-Pacific region turned in a lackluster performance during trading on Wednesday. Tesla was down 1.86 percent after Jefferies started coverage of the electric vehicle maker's stock with "underperform".
    Pfizer, Inc. (NYSE:PFE) Stock Closed Over Its 50 Day Moving Average

    Pfizer, Inc. (NYSE:PFE) Stock Closed Over Its 50 Day Moving Average

    Several large investors have recently bought and sold shares of the stock. 52 funds opened positions while 127 raised stakes. About 778,890 shares traded. (NYSE:PFE) were released by: Fool.com and their article: "Better Buy: Eli Lilly and Company vs.
  • North Korea's foreign minister calls Trump's United Nations  address 'sound of dog barking'

    North Korea's foreign minister calls Trump's United Nations address 'sound of dog barking'

    Trump also offered an economic justification for his decision to sharply reduce the number of refugees the United States takes in. The exact timing of when the aid will be sent, as well as its size, will be confirmed later, the ministry said in a statement .
    Nikki Haley: If They Continue Being Reckless 'North Korea Will Be Destroyed'

    Nikki Haley: If They Continue Being Reckless 'North Korea Will Be Destroyed'

    Haley said that wasn't an empty threat from the president but, when asked, she declined to describe the president's intentions. In addition to Trump and Haley, Vice President Mike Pence, Secretary of State Rex Tillerson, National Security Adviser H.R.
    AIA sees growth opportunities in lifting insurance cover from purchases

    AIA sees growth opportunities in lifting insurance cover from purchases

    The deal excludes CBA's life insurance joint venture in China, where it holds a 37.5 percent stake in BoComm Life Insurance Co. Her departure follows the finalisation of the sale of CBA's CommInsure life insurace division .