The official Equifax twitter account is pointing customers towards a fake phishing site instead of the original site created to warn customers.
The official Equifax twitter account is pointing customers towards a fake phishing site instead of the original site which is created to warn customers. Tuesday afternoon, an Equifax representative named Tim tweeted "Hi! For more information about the product and enrollment, please visit: securityequifax2017.com." which is a fake phishing site. It was given in response to question about credit card monitoring which Equifax is providing to their customers. 
After the data breach which exposed the personal data of 143 million Americans, Equifax created a website https://www.equifaxsecurity2017.com where customers can check whether they were affected by the breach by entering their last name and last six digits of their social security number. Someone made a clone of that website with a very similar URL https://securityequifax2017.com Which looks similar to the original on the first look. Clicking the fake link asks the users to enter their last name and social security number same as the original one. Upon clicking continue button, a pop-up window appears saying that "you just got bamboozled,this isnt a secure site [sic]! Tweet to @equifax to get them to change it to equifax.com before thousands of people loose [sic] their info to phishing sites!" 
Nick Sweeting, a software engineer, has taken the credit for the fake site and said he is not stealing any of the entered data. He created it to make Equifax understand how easily it can be tricked and to change its hosting to a company’s secure website. 
Sweeting said the site received over 2000 hits in last few days and many malicious phishing websites are already out there. The tweet was deleted on Wednesday morning, and Equifax responded to the incident in an email that “ All posts using the wrong link have been taken down,.To confirm, the correct website is https://www.equifaxsecurity2017.com We apologize for the confusion.”