alert Epik Had A Major Breach

[DaveX]

Just read this. Looks like Epik may have been hacked and sensitive data compromised...

Read here:
https://domainnamewire.com/2021/09/14/hackers-claim-significant-epik-breach/

Thought I would share this.

 

[Kirtaner]

Rumors on Twitter about the "FBI being involved in facilitating the leak" are dumb.

If LEO has the resources and Rob's lawyers are getting involved, the hackers will most likely face criminal prosecution *at some point*. This hack effected 15 million people at most and anonymous has a very poor record as far as criminal cases. Sometimes justice gets delayed, but yea Anonymous or Anonymous related people have very poor track records with this stuff.

 

[shoulda9393]

kiss emoji

ok well for the record I don't believe in prisons.

If you are the hacker, I think prisons are inhumane, and court mandated home confinement or court mandated arts related halfway house / island retreat would work as better rehabilitative services for hackers

 

[Kirtaner]

ok well for the record I don't believe in prisons.

If you are the hacker, I think prisons are inhumane, and court mandated home confinement or court mandated arts related halfway house / island retreat would work as better rehabilitative services for hackers

I ALREADY NEVER GO OUTSIDE!~!!!!~~~~

 

[FernandoBMS]

It shouldn't, but I'm still surprised at people trying to blame everything and everyone including this very thread for Epik's poor security status and the chaotic way it responded to the breach incident.

 

[mr-x]

You are missing the point. When a site gets notoriety or popularity it will be a target of hackers. Whether it is anonymous or someone else is besides the point. The point is what actions are taken to protect sensitive customer information. If reasonable actions are implemented and still a hack attack takes place, then what is the mitigation strategy, what is the response?

So far, from what I can see, the mitigation strategy seems to be to protect the Epik brand. Which is not working out so well. Protecting customer data is not a priority.

I'm not missing anything. You are justifying criminal behavior and making excuses.

 

[shoulda9393]

It shouldn't, but I'm still surprised at people trying to blame everything and everyone including this very thread for Epik's poor security status and the chaotic way it responded to the breach incident.

What makes more sense for Epik customers, to haze the person in control of our domains non-stop for having used crappy code and therefore horrible technical employees in the past or...

to continuously apply pressure on the narcissistic person/people in the thread who quite literally may have been involved in not just planning the hacking our info, but leaking *all of it* to the public?

If the answer is the former, you probably have the idea that Epik domain registrar was just used by far-right-wingers / nazis. Which is false and probably why DDOSsecrets hasn't made the DB browsable without a torrent, as it including thousands of random innocent Epik customers. It's also why the few media reports on this sometimes had quotes from professionals saying utilizing this hack for political purposes is 'unethical'.

The people involved in stoking hackers or hacking our material don't want to accept responsibility for their actions. It's sad, because the only morally innocent people here with respect to the breach are (usually) random customers and those supporting them.

If law enforcement, who have been really good in the past with respect to Anonymous-related people, is reading this thread and has legal ability to peruse the leak, one would find most people using this service were not political at all and this had negative impact on many innocent people.

 

[Future Sensors]

If law enforcement, who have been really good in the past with respect to Anonymous-related people, is reading this thread and has legal ability to peruse the leak, one would find most people using this service were not political at all and this had negative impact on many innocent people.

Interesting thought, but:

Huge hack of alternative web services provider Epik could be 'a Rosetta Stone to the far-right'

https://news.yahoo.com/huge-hack-alternative-services-provider-044241165.html

https://en.wikipedia.org/wiki/Rosetta_Stone#Idiomatic_use

 

[shoulda9393]

Interesting thought, but:
Epik had a lot of right-wing customers and media used that to say the hack could be used to get info on them

Epik having a lot of right wing customers != justification for leaking the info of random non-political people.

Even in an alternative universe where a neutrally-advertised-to-the-public, mainstream domain registrar only had right-wing customers, the law and LEO can and does actively protect right-wingers despite how obnoxious they can be, when they have a crime committed against them.

 

[Future Sensors]

Epik having a lot of right wing customers != justification for leaking the info of random non-political people.

Where did I say that?

 

[shoulda9393]

from Washington Examiner:

"The hackers should face consequences, added Jon Clay, vice president of threat intelligence at cybersecurity vendor Trend Micro. "Regardless of who perpetrates the attack, stealing information from a company is wrong and should be punished," he said.

Anonymous comprises "modern-day cyber vigilantes," said Chuck Everette, director of cybersecurity advocacy at cybersecurity vendor Deep Instinct. This type of hacking violates the law in most countries, he said.

"They have their own agenda, and their intent seems to be to inflict as much possible damage," he told the Washington Examiner. "These acts of hacktivism seek to punish, harm, or embarrass groups or individuals without due process."

Some news organizations have written stories about the customer data exposed, and some websites and social media users have published customer data, and Clay questioned the ethics of doing so. "Leaking publicly any information that was obtained illegally and through hacking efforts should not be tolerated," he told the Washington Examiner."

 

[shoulda9393]

Also if you are reading this thread as someone who was negatively impacted by criminals who illegally leaked your info and you know about who did it, law enforcement would be happy to help you, and you should report the crime to the relevant authorities with any info you have about who did it.

There's enough neutral people in the media calling for prosecution of the hackers, LEO would be happy to have as much info as possible is my guess.

 

[Derek Peterson]

Also if you are reading this thread as someone who was negatively impacted by criminals who illegally leaked your info and you know about who did it, law enforcement would be happy to help you, and you should report the crime to the relevant authorities with any info you have about who did it.

There's enough neutral people in the media calling for prosecution of the hackers, LEO would be happy to have as much info as possible is my guess.

I was impacted by a criminal named Rob Monster, as were thousands of others. That grifter said he had a fully secure platform, Swiss bank of domains, but the liar had never even seen the code or had it reviewed. He was storing all our data in clear text, even credit cards and cvv codes, for some reason. He was even storing failed login attempts like he wanted to hack our other accounts - banks, emails, etc. He had said he built his own VPN and other products but he really just white labeled a bunch of things and claimed he made them. Very suspicious behavior indeed. Almost like he was just trying to inflate the value of his company so he could get a big pay day. FRAUD is Rob Monster. Professional fraud. Christian fraud.

And then the guy comes to a forum where people are discussing how this Epik scam impacted them and in order to cover up his crimes he makes a bunch of alt accounts to distract people and bury the evidence. Like a real criminal would do when he wipes down his finger prints.

 

[shoulda9393]

I was impacted by a criminal named Rob Monster, as were thousands of others. That grifter said he had a fully secure platform, Swiss bank of domains, but the liar had never even seen the code or had it reviewed. He was storing all our data in clear text, even credit cards and cvv codes, for some reason. He was even storing failed login attempts like he wanted to hack our other accounts - banks, emails, etc. He had said he built his own VPN and other products but he really just white labeled a bunch of things and claimed he made them. Very suspicious behavior indeed. Almost like he was just trying to inflate the value of his company so he could get a big pay day. FRAUD is Rob Monster. Professional fraud. Christian fraud.

And then the guy comes to a forum where people are discussing how this Epik scam impacted them and in order to cover up his crimes he makes a bunch of alt accounts to distract people and bury the evidence. Like a real criminal would do when he wipes down his finger prints.

Rob's business was incompetent in their security practices. Hackers have most or all of the moral blame here, and will likely get prosecuted. Also, reported your post to moderators.

And on a note unrelated to you, those who knowingly spread misinfo about the Epik customer base, or are chummy with hackers, are also not good faith contributors here and their presence should not be tolerated.

Most people effected by the hack don't even know of this forum (or any domain forums), which is probably why bad faith people like conspiracy theorists, hackers, and epik customer misinfo spreaders (separate people often) have been setting up shop here and elsewhere.

 

[Future Sensors]

And on another note, those who knowingly spread misinfo about the Epik customer base are not good faith contributors here.

I think by now everyone has made this nuance, namely that the majority of the customers is not far-right at all. Suggesting that this has not happened here in this thread is culpable and must be substantiated by referring to specific postings. Thank you.

 

[FernandoBMS]

I think by now everyone has made this nuance, namely that the majority of the customers is not far-right at all. Suggesting that this has not happened here in this thread is culpable and must be substantiated by referring to specific postings. Thank you.

This thread been debunking misinfo not the contrary so no idea what this guy is talking about.

 

[shoulda9393]

I think by now everyone has made this nuance, namely that the majority of the customers is not far-right at all. Suggesting that this has not happened here in this thread is culpable and must be substantiated by referring to specific postings. Thank you.

The Wikipedia lede and the person in charge of that lede whose reporting was used by Wa Post to craft a narrative about right-wingers exclusively.

And also the guy, who retweets that person, in this thread whose bio is "hacker" and has been downvoting every post suggesting the customer base is not just right-wingers. Thanks. I will also be ignoring your posts now, as you have no interest in anything except splitting hairs an anyone disagreeing with the hacker in this thread or the misinfo spreaders.

 

[Kirtaner]

What makes more sense for Epik customers, to haze the person in control of our domains non-stop for having used crappy code and therefore horrible technical employees in the past or...

to continuously apply pressure on the narcissistic person/people in the thread who quite literally may have been involved in not just planning the hacking our info, but leaking *all of it* to the public?

If the answer is the former, you probably have the idea that Epik domain registrar was just used by far-right-wingers / nazis. Which is false and probably why DDOSsecrets hasn't made the DB browsable without a torrent, as it including thousands of random innocent Epik customers. It's also why the few media reports on this sometimes had quotes from professionals saying utilizing this hack for political purposes is 'unethical'.

The people involved in stoking hackers or hacking our material don't want to accept responsibility for their actions. It's sad, because the only morally innocent people here with respect to the breach are (usually) random customers and those supporting them.

If law enforcement, who have been really good in the past with respect to Anonymous-related people, is reading this thread and has legal ability to peruse the leak, one would find most people using this service were not political at all and this had negative impact on many innocent people.

Your narrative ops are transparent and weak. You showed up late to the party if you wanted to attempt to persuade the onlookers that this was bad; media cycle disagrees universally, the feds that lurk my Twitter feed (lol) are incredibly positive on it, it has resulted in the boosting of several federal investigations, Anonymous essentially *helped* the FBI here, as gross as that is for me to type out.

 

[shoulda9393]

Your narrative ops are transparent and weak.

Your bio here is 'hacker'

 

[FernandoBMS]

Nothing wrong with being a hacker. Epik shoulda have employed some.

 

[Kirtaner]

Your bio here is 'hacker'

Hack the Planet.