There are some pretty sophisticated phisisng sites active around the clock that respond by "forwarding" input every now and then to the original site. I don't really remember where I read it, but I'm sure it exists.

You probably sorted it wrong, First should be "verify website authenticity". Updating software is a waste if you actually downloaded it from the wrong site in the first place.