Equifax has been sending customers to a phony phishing website

Cybercrime.
(Image credit: iStock)

The personal information of 143 million Americans might have been compromised in a massive cybersecurity breach at the credit-reporting service Equifax reported earlier this month, and in the intervening days, the company has been heavily criticized for its response to the crisis. The story, though, gets much worse: Equifax has reportedly been linking customers looking to determine if their information was compromised to a phony phishing website, Fortune reports.

The real website can be found at equifaxsecurity2017.com, but a customer service agent who signed tweets as "Tim" linked at least eight people to securityequifax2017.com.

The fake website was built by software developer Nick Sweeting, who wanted to prove how easy it was for scammers to replicate the Equifax website as a means of tricking people into handing over personal information, Fortune reports. Although Sweeting carefully labeled his website as "totally fake," it still worked — too well. "Equifax just linked customers to my fake phishing version of their website by accident," he tweeted.

Subscribe to The Week

Escape your echo chamber. Get the facts behind the news, plus analysis from multiple perspectives.

SUBSCRIBE & SAVE
https://cdn.mos.cms.futurecdn.net/flexiimages/jacafc5zvs1692883516.jpg

Sign up for The Week's Free Newsletters

From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.

From our morning news briefing to a weekly Good News Newsletter, get the best of The Week delivered directly to your inbox.

Sign up

Equifax has since removed all the incorrect posts and apologized for any confusion.

Sweeting added: "I just hope the employee who posted the tweet[s] doesn't get fired, they probably just Googled for the URL and ended up finding the fake one instead. The real blame lies with the people who originally decided to set the site up badly." Read the full report at Fortune and learn how to protect yourself after the breach here at The Week.

Editor's note: This article has been slightly revised to more specifically explain the nature of Sweeting's website.

Explore More
Jeva Lange

Jeva Lange was the executive editor at TheWeek.com. She formerly served as The Week's deputy editor and culture critic. She is also a contributor to Screen Slate, and her writing has appeared in The New York Daily News, The Awl, Vice, and Gothamist, among other publications. Jeva lives in New York City. Follow her on Twitter.