Would you trust Equifax’s “Discounted” Offers?

Equifax visitors, who wanted to determine if they were affected by breach, were led to this page. Clicking on Free or Discounted Credit Report is how Equifax visitors would get served 3rd party malware.

That ain’t workin’ that’s the way you do it 
Money for nothin’ and chicks for free… ~ Dire Straits (“Money for Nothing”)

We’ve all heard Dire Strait’s old song “Money for Nothing” and that’s what monetizing web traffic is like for website owners. Publishers like NYTimes do it to stay alive as do behemoths like Amazon to generate additional revenue. So can we blame Equifax for wanting to make some do-re-mi off the tens of millions of new website visitors coming to their site? (cue the crickets…)

Equifax visitors, who wanted to determine if they were affected by breach, were led to the page above. Clicking on Free or Discounted Credit Report is how Equifax visitors would get served 3rd party malware. Not Equifax’s system, sure – but it’s definitely because they wanted to monetize that traffic. For those reporting Equifax’s line about “not our system that was hacked,” is similar to casting blame on Apache Struts for its issue. Let’s put on our thinking caps, shall we?