[jwp23]

Your comment inspired me to take a look. I compared the SSL certificate and the whois information to equifax.com. The settlement site uses a different company for the certificate. The settlement site uses Starfield Technologies vs DigiCert for equifax.com. The settlement site uses GoDaddy for their DNS vs UltraDNS for equifax.com. It's not impossible that a division in the company or a different law firm uses different SSL certificate provider and DNS provider, but it may point to some caution.

Edit: As another commenter pointed out, this site is linked to from the FTC site about the breach.

[azernik]

You're assuming that this site is run by Equifax; it is not. It is run by a "Settlement Administrator", a third-party entrusted by the court to handle the money and record-keeping associated with a class-action settlement. This is to avoid possible manipulation of the settlement by the defendant.

[ocdtrekkie]

Being linked to from the FTC isn't a safe bet. Bear in mind Equifax sent people to a fake Equifax website before: https://money.cnn.com/2017/09/20/technology/business/equifax...

[mandevil]

Legally, the settlement administrator must be totally independent from Equifax, so comparing their hosting providers, cert providers, etc. you'd only expect them to match by random chance.

[devcpp]

Why compare it to Equifax? I'd just assume it's an unrelated malicious opportunist. I'd rather compare it to JND to have evidence towards proving that it's legit. Anyway it is legit since it's mentioned on the FTC site.

[jwp23]

I made a faulty assumption. As others have pointed out, the settlement site is run by a third party.

[niij]

At this point I'd consider the government more competent than Equifax.

[simonsarris]

Yeah its totally legit, its just funny to think about. I expect it to happen someday.

This site is using godaddy presumably because the law firm also does, though they do use different certs!