IT.COM

information Epik and your plan

Spaceship Spaceship
Watch

johnn

WeSellName.comTop Member
Impact
11,429
I know there are a lot of members here have account with Epik so the information from you may help other members.

1. How many names do you have with Epik
2. Are you worried and what's your plan NOW and when the hacking is OVER
 
7
•••
The views expressed on this page by users and staff are their own, not those of NamePros.
I'm in the EU and our cards are more secure. In such way that I cannot even use them with many providers.

And I have limited amounts on card, transferring there only what needed. Plus 3D secure 2FA and an additional password, the latter two not being stored at Epik. I will not cancel the cards but will be monitoring them anyway. Keeping low amounts for now just to see if there's an issue. Have to travel soon and this is not the time to be cancelling my business card.
 
4
•••
I have stepped back from domaining, but just before I did start using Epik and had been impressed with their platform. I'd assumed that if I got back into it, I'd use them. That won't be happening now.

As a platform/ backend developer, I've always sensed they are rushing. A LOT. This falls right into my experience backyard.

By comparison, other registrars are slow and testing each comma before they release a change (for example I help Dynadot with features and certain improvements there came from me, such as the bulk search result download for example).

So I had a deep inner feeling that everything is built in haste. You can't build that fast a system so complex.

Turns out my gut feeling was right.
 
7
•••
I have around 25-30 domains with them, it is not where I hold the more valuable domains and I think I will move some out, but not every domain, while I'll keep monitoring as everyone else.
 
4
•••
>>What personal information may have been obtained:
Name, address, email address, username, password, phone and VAT number (if given), transaction history, domain ownership, and for a small subset of users, credit card information.<<

latest info from epik

no prayers this time
 
3
•••
I have many names with Epik, my plan is to continue that way, they are a prime target for such attacks but can happen somewhere else too. After 20+ years as a web developer I've seen a lot.
I'm monitoring my credit card (has a small limit anyway) and increased the security on my end.
Not much more I can do, just hope that Epik survives this and that clients aren't affected with identity theft, stolen funds, etc. Many of us are outside the US, will not receive automatic monitoring, will need to do such work on our own.
On a war between two sides those that have nothing to do with such confusion are those easily forgotten. I see so many people gloating and happy this happened to THOUSANDS of developers, entrepreneurs, small businesses... heartless and selfish.
 
Last edited:
11
•••
TL;DR

I have only 16 domains and around $200 worth of credits at epik at the moment.

Since domain names aren't physical things and the domain ownership records must have well backed up, I believe even the worst case happened at the registrar level can easily be undone by the registry. What we should be worried about is that the card information might have compromised.

I don't have any plans to moving from epik so far, since I am happy with their pricing and service. But what I don't like about them is mixing business with politics, as @johnn mentioned somewhere. Also IMHO, they are lowering their own status trying to be a peoples company by commenting / involving in every silly things.
 
Last edited:
4
•••
Isn't anyone going to mention their Federated Identity system which is a 1-login gateway for other websites.

"The Key to a Trustworthy Online Experience"

What a load of croc!
 
4
•••
Isn't anyone going to mention their Federated Identity system which is a 1-login gateway for other websites.

"The Key to a Trustworthy Online Experience"

What a load of croc!

I'm actually a bit annoyed about this. I set up an account with Epik purely because my buyer wanted to use them as escrow. I'd actually been under the impression that their login system was third party, and they wouldn't hold my data. But it's just them...

On the plus side, the escrow service was very good.
 
3
•••
This thread is not about Rob but what would you do in this situation.

Agree, this thread is not about Rob and about the situation at Epik.

Also, I agree, that this forum is not the place to discuss or comment on religion, politics, nationality or race.

Also, how many domains we have at Epik - This has nothing to do with situation imo. Its not required.

Also, worlds most secured sites have been hacked in the past. How many had the guts to openly apologize and make amends.
 
Last edited:
5
•••
Agree, this thread is not about Rob and about the situation at Epik.

Also, I agree, that this forum is not the place to discuss or comment on religion, politics, nationality or race.

Also, how many domains we have at Epik - This has nothing to do with situation imo. Its not required.

Also, worlds most secured sites have been hacked in the past. How many had the guts to openly apologize and make amends.

Don't agree, I'm afraid. Epik marketed itself very much based on Rob's beliefs - free speech, liberty, security and privacy. A lot of the evidence would suggest that he has failed on these points.

I'm not anti Rob. I disagree with a lot he says, but I do support him on push back against aggressive cancellation and somewhat libertarian outlook. I'd barely used Epik, but I'd liked what I'd seen in terms of features etc.

Sadly Epik has demonstrated that its corporate processes didn't match these lofty ideals.

Equally, his response to the disaster has been made worse by his constant talk of God and demons etc. His inability to separate his business and his beliefs is one of the biggest issues for Epik.
 
Last edited:
9
•••
Regarding Credit Card Transaction at any Registrar or for any online Purchases, I follow one rule. After every transaction i delete my Card details from Payment section and again add them while carrying out fresh transaction..
Though it is convenient to save and carry out transactions smoothly without going through the trouble of adding CC details each and every time during transaction, i feel deleting it after every transaction gives a sense of security and peace of mind.
 
5
•••
With all the information coming out in the leaks, it would be very useful to gain some insight into the sort of domains competitors hold.

I'm sure there are many people right now viewing this data and using it to their competitive advantage into the market. Not that I would or anything...
 
0
•••
Regarding Credit Card Transaction at any Registrar or for any online Purchases, I follow one rule. After every transaction i delete my Card details from Payment section and again add them while carrying out fresh transaction..
Though it is convenient to save and carry out transactions smoothly without going through the trouble of adding CC details each and every time during transaction, i feel deleting it after every transaction gives a sense of security and peace of mind.
It's probably reasonably secure but the problem is you never have any idea how data is being processed server side, or if it's really being deleted or held in backups. If a service has poor security, even deleting data might not save you.
 
3
•••
With all the information coming out in the leaks, it would be very useful to gain some insight into the sort of domains competitors hold.

I'm sure there are many people right now viewing this data and using it to their competitive advantage into the market. Not that I would or anything...
This leak is outdated, it is ~6.5 months old backup.
 
Last edited:
1
•••
It's probably reasonably secure but the problem is you never have any idea how data is being processed server side, or if it's really being deleted or held in backups. If a service has poor security, even deleting data might not save you.
Yes. I do agree. But we have to do whatever is possible from our side.
 
Last edited:
1
•••
as you may expect, I have removed all my domains away from epik.
he is still praying for me.
that s*cks

no idea how somebody could DISAGREE with my post

Thats' what is called "free speech"

not even that:
those are facts

1) I removed my domains from epik for obvious reasons
2) Rob told me he is praying for me
3) to me that s*cks

those are facts

there is no room for disagreement
or dislikes

the ones who have done so:
check your free speech approach,
that you are so proud of
 
3
•••
no idea how somebody could DISAGREE with my post

Thats' what is called "free speech"

not even that:
those are facts

1) I removed my domains from epik for obvious reasons
2) Rob told me he is praying for me
3) to me that s*cks

those are facts

there is no room for disagreement
or dislikes

the ones who have done so:
check your free speech approach,
that you are so proud of

Stop whining about other people exercising their free speech.
 
Last edited:
2
•••
Stop whining about other people exercising their free speech.

great argument
if they would have said
something
 
2
•••
great argument
if they would have said
something

If they didn't say anything why are you complaining? Dislike, Like, Thanks, etc. are all methods of communicating .
 
3
•••
I am wondering if they can see which accounts actually had their CC information compromised. From the e-mail I received, it seems like not every account was compromised.
 
1
•••
If they didn't say anything why are you complaining? Dislike, Like, Thanks, etc. are all methods of communicating .

a dislike is a one-way communication
there are no arguments

nothing to improve
nothing to learn
nothing to discuss

free speech to me means:
I can say what I want without fear of jurisdictional punishment



when you don't exchange opinions
but stay quietly behind a "dislike" or "disagree"
that is a cowardly behavior

you do not need to fear
to be exposed
as you talk nonsense

now again
to those disagreeing:
how can you disagree
when I did talk about facts?

you don't like those facts,
yes I understand that
me neither
 
3
•••
a dislike is a one-way communication
there are no arguments

nothing to improve
nothing to learn
nothing to discuss

free speech to me means:
I can say what I want without fear of jurisdictional punishment



when you don't exchange opinions
but stay quietly behind a "dislike" or "disagree"
that is a cowardly behavior

you do not need to fear
to be exposed
as you talk nonsense

now again
to those disagreeing:
how can you disagree
when I did talk about facts?

you don't like those facts,
yes I understand that
me neither

Toughen up butter cup. This is the third post complaining about other people expressing themselves in a way you don't approve of. You don't have to like it and they don't have to care.
 
5
•••
No more attack and back to the topic please.
 
4
•••
It’d be easier to switch registrars if another registrar offered free advanced dns service for external domains, a marketplace service like nameliquidate, and 6.99 .com transfers.. i am hoping the new dan.com will at least have the first feature if not the other two, but it’s doubtful. as far as leaking of info, i wasn’t doing any right wing web hosting activity, just domaining, so hopefully it doesn’t affect in any way.
 
0
•••
It’d be easier to switch registrars if another registrar offered free advanced dns service for external domains, a marketplace service like nameliquidate, and 6.99 .com transfers.. i am hoping the new dan.com will at least have the first feature if not the other two, but it’s doubtful. as far as leaking of info, i wasn’t doing any right wing web hosting activity, just domaining, so hopefully it doesn’t affect in any way.


try cloudflare
 
1
•••
Back