NameSilo

Epik and your plan

Labeled as information in Warnings and Alerts, started by johnn, Sep 15, 2021

Replies:
125
Views:
10,064

  1. johnn

    johnn WeSellName.com PRO VIP ★★★★★★★★★★

    Posts:
    17,794
    Likes Received:
    8,254
    I don't care if he likes him or not but not coming to the thread and attack me.
    I did not say anything wrong with Rob. He is blindly defends Rob regardless of the situation.
    This thread is not about Rob but what would you do in this situation.
     
    The views expressed on this page by users and staff are their own, not those of NamePros.
  2. omelet

    omelet Top Contributor VIP

    Posts:
    3,031
    Likes Received:
    1,719
    ppl freely express their preferences. Look like you attacked them first.

    I respect your choice, that's no problem. but it doesnt make sense to blame and attack ppl who different from you.
     
  3. omelet

    omelet Top Contributor VIP

    Posts:
    3,031
    Likes Received:
    1,719
    I know Rob but I don't know him deep. Maybe he is the worst guy. I don't know that deep. Based on my personal experiences, Epik is better than most of others and Rob as a CEO do offer me help and treat me with respect. Do you believe Godaddy, Dynadot, NSI, CEO cares who you are?

    Everyone is complicated, everyone is a mix of goods and bads. So i dont judge ppl. When u judge others from a moral high, look at yourself.

    END
     
  4. Mister Funsky

    Mister Funsky Top Contributor VIP

    Posts:
    5,637
    Likes Received:
    21,707
    Haven't read the whole thread yet, but my 'plan' is to stay the course. Ineffectual and marginalized individuals (due to their own inadequacies) will do their best to disrupt others in the digital universe.

    I will continue to buy and sell on the Epik marketplace (along with the other major markets). The most recent issue is just a bump in the road along the journey to forever.
     
  5. Alop

    Alop Restricted (15-30%) Gold Account

    Posts:
    1,992
    Likes Received:
    1,262
    Im beyond deadPERIODT

    ….if Epik dies I can only entrust GoDaddy …Thank you @Paul Nicks + @johnn
     
    Last edited: Sep 16, 2021
  6. April004

    April004 Established Member

    Posts:
    149
    Likes Received:
    190
    1. had only single domain with them, moved to hexonet.
    2. but yes, I'm worried about the account information that got leaked to hackers.

    so no more Epik (as of now until everything is sorted) there are lots of good, reliable, secure options.

    Did i forgot to tell Namecheap is have transfer-week sales, you can transfer .COMs to them for some $3 and few cents.
     
    Last edited: Sep 16, 2021
  7. gabri3l

    gabri3l Established Member

    Posts:
    34
    Likes Received:
    52
    And now the entire world knows how they managed that, 0$ for netsec!
     
  8. MysticHero

    MysticHero Established Member

    Posts:
    59
    Likes Received:
    801
    I'll register more domains with them. I won't be leaving for now. I don't see any better option out there.
     
  9. frank-germany

    frank-germany domainer since 2001 / musician VIP

    Posts:
    9,117
    Likes Received:
    13,698
    Epik having a major security issue is bad news
    I feel with everyone having worries about their own data integrity

    what I find peculiar is the fact
    that a registrar who is using the slogan

    "swiss bank of domains"

    is either trying to discredit the swiss banks as such
    or is simply lying

    and as a reaction telling the poor customer
    that he is praying for him

    don't you get that???
     
  10. has2hands

    has2hands VIP Member VIP ICA Member ★★★★★★★★★★

    Posts:
    1,096
    Likes Received:
    228
    I imagine the hackers are still inside their system(s).
     
  11. henrypcyeung

    henrypcyeung Established Member

    Posts:
    546
    Likes Received:
    1,385
    I recently planned to transfer all domains to Epik because of the great customer support and the cheaper renewal and transfer prices offered by Epik (especially the special discount for NP members). I transferred very few domains to Epik for trial, so the impact of the hack (if the hack is true) on me is not high compared to Epik's heavy users. Now the domains cannot be moved away from Epik, so I can do nothing on the domains right now. But it allows me to have more time to see what will happen next and then rethink if I should continue to use Epik or not.
     
  12. jhm

    jhm Glazed

    Posts:
    3,583
    Likes Received:
    4,934
    I have nothing with them, thankfully. Hope they sort this out and provide an update for all of you
     
  13. OmarVG

    OmarVG Top Contributor VIP

    Posts:
    3,032
    Likes Received:
    4,313
    1) Zero names in Epik for OBVIOUS REASONS...

    2) No worried at all about Epik FAIL.
     
  14. has2hands

    has2hands VIP Member VIP ICA Member ★★★★★★★★★★

    Posts:
    1,096
    Likes Received:
    228
    LINK: https://www.dailydot.com/debug/epik-hack-far-right-sites-anonymous/

    "A Linux engineer tasked with conducting an impact assessment on behalf of a client who uses Epik’s services told the Daily Dot that the breach was one of the worst he had ever seen. The engineer did not have permission to speak about the breach by his employer and was granted anonymity by the Daily Dot.

    “They are fully compromised end-to-end,” they said. “Maybe the worst I’ve ever seen in my 20-year career.”

    The engineer pointed the Daily Dot to what they described as Epik’s “entire primary database,” which contains hosting account usernames and passwords, SSH keys, and even some credit card numbers—all stored in plaintext.

    The data also includes Auth-Codes, passcodes that are needed to transfer a domain name between registrars. The engineer stated that with all the data in the leak, which also included admin passwords for WordPress logins, any attacker could easily take over the websites of countless Epik customers.

    The Daily Dot was unable to confirm the claims made in the press release by Anonymous that every single one of Epik’s customers were exposed in the breach.

    Analysis suggests that hacked data goes up until Feb. 28, 2021. The data’s release comes just days after hackers aligned with Anonymous defaced the official website for the Republican Party of Texas over the state’s new restrictions on abortion."
     
  15. frostify

    frostify Top Contributor VIP

    Posts:
    1,828
    Likes Received:
    974
    If the actual auth codes to transfer away domain names was included in this hack then that's a huge issue.
     
  16. william

    william Established Member ★★★★★★★★★★

    Posts:
    598
    Likes Received:
    64
    I was planning to transfer a good chunk of my folio to Epik (due to pricing) and I started to transfer some, but now will definitely hold off and will transfer any of the more valuable names out.

    "and even some credit card numbers—all stored in plaintext."
    "The data also includes Auth-Codes, passcodes that are needed to transfer a domain name between registrars."

    These two bits are extremely concerning. What's sad is that Epik failed to acknowledge any of this and tell us what specific actions they are taking. Instead they are sending the hackers prayers? We need action, explanation, and future prevention. Not prayers.

    Here's what I suggest:

    1) Enable two factor authentification.
    2) Change your password.
    3) Transfer any highly valuable domain names OUT.
     
    Last edited: Sep 17, 2021
  17. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,076
    Likes Received:
    10,963
    AUTH codes are already refreshed according to Rob.
     
  18. thekiller

    thekiller Top Contributor VIP

    Posts:
    2,179
    Likes Received:
    3,081
    I have 100+ domains at epik.com recently transferred, the hacking news is worrisome but I would see how things unfold and the decided what I would do.
     
  19. Mister Funsky

    Mister Funsky Top Contributor VIP

    Posts:
    5,637
    Likes Received:
    21,707
    The 'hack' either occurred prior to March (6 months ago) or it was a 'hack' of data that was stored at a supplier/2nd site. Either way, any 'damage' that would have happened including stolen names would have and/or should have happened well before now.

    Codes have been changed, more than once, and if your names do not stay locked always (regardless of who your registrar might be) you probably should not dabbling in the art of domain investing.

    Until/unless someone can legitimately report he/she has had a name stolen I'm not going to worry too much.

    Back to the first paragraph, if the data was hacked 6 months ago, why did the hackers wait so long to make a production about it? Were they trying to extort Epik in the meantime or did they just manage to get get access to off core storage?
     
  20. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,076
    Likes Received:
    10,963
    They didn't wait, this week they got backup of Epik DB.
     
    Last edited: Sep 17, 2021
  21. kite26

    kite26 Fearless Bird VIP

    Posts:
    6,154
    Likes Received:
    5,863
    That's why i suggest to anyone not to have all his names to only one registrar. I know that can be hard because of cheap pricing, but it is easier to move names. I say that regardless the current news.
    I recognize that they are very innovative company, but any topic about safety must be taken very seriously.
     
    Last edited: Sep 17, 2021
  22. Steven McEvoy

    Steven McEvoy CEO, SUWP VIP

    Posts:
    3,002
    Likes Received:
    1,623
    As I was a huge fan of Epik... I think i will be moving out my domains back to Namesilo/Dynadot.. in do time.

    I really hate when businesses want to feed in on politics and personal views... Just like GoDaddy.

    **Update i removed 2 important domains the others I will probably wait to sell or transfer when close to exp.
     
    Last edited: Sep 17, 2021
  23. topdom

    topdom Top Contributor VIP

    Posts:
    1,681
    Likes Received:
    1,426
    Years ago one of my (landrush) domains was stolen, and moved to another registrar. I contacted my registrar (not a very popular one) and after some waiting I got my domain back. But if I didn't realize it was missing, then it would have gone forever.. (nothing to do with Epik). .. So, in such cases, if you are awake, probably you can protect your domains. (later sold for 4 figures, big amount for a student).
     
  24. KWNG

    KWNG Established Member

    Posts:
    148
    Likes Received:
    216
    Epik should only allow transfers out from here on via not only auth codes but by emailing the owner to double confirm the transfer by clicking on the provided link.
     
  25. namezest

    namezest Top Contributor VIP

    Posts:
    1,485
    Likes Received:
    1,941
    Guys can I point out something? No one likes a tattle tale but isn't knocking someones faith a no no and considered discrimination? Are any of us here above the law? Just saying.. :unsure:
     
    Last edited: Sep 18, 2021

Want to reply or ask your own question?

It only takes a minute to sign up – and it's free!
Topics / Tags:
NameWorth
  1. NamePros uses cookies and similar technologies. By using this site, you are agreeing to our privacy policy, terms, and use of cookies.
    Dismiss Notice
Loading...