Equifax just dug itself a bigger hole by directing its customers to a fake website to check if they've been hacked. Instead of just creating a page on its official site to help users check, Equifax set up another web address named equfaxsecurity2017.com, which developer Nick Sweeting tested the efficacy of by creating securityequifax2017.com By just switching the order of the words "equifax" and "security" Sweeting proved that customers could easily be rerouted to a malicious site with a similar web address. "It makes it ridiculously easy for scammers to come in and build clones — they can buy up dozens of domains, and typo-squat to get people to type in their info." Sweeting told USA Today
