NameSilo

Epik Had A Major Breach

Labeled as alert in Warnings and Alerts, started by Silentptnr, Sep 14, 2021

Replies:
3,048
Views:
165,383

  1. cbd

    cbd Top Contributor VIP Gold Account

    Posts:
    2,371
    Likes Received:
    1,299
    I agree 100%, the email did not properly address the situation at all - in fact it downplayed the situation imho.

    Precautionary? Alleged? C'mon.
     
    Last edited: Sep 18, 2021
    The views expressed on this page by users and staff are their own, not those of NamePros.
  2. bmugford

    bmugford www.DataCube.com PRO VIP ICA Member ★★★★★★★★★★

    Posts:
    14,114
    Likes Received:
    27,121
    Emma Best
    @NatSecGeek

    Rob Monster describing Joey Camp trespassing while doing unlicensed PI work for him is an interesting admission. Joey seemed to confirm it in his lil 'press release', so I'm sure it'll be brought up in Rob's inevitable FBI interviews

    11:03 AM · Sep 18, 2021·Twitter Web App


    upload_2021-9-18_18-53-15.jpeg
     
  3. bmugford

    bmugford www.DataCube.com PRO VIP ICA Member ★★★★★★★★★★

    Posts:
    14,114
    Likes Received:
    27,121
    What you don't think deny, deflect, blame others is a viable strategy?

    Brad
     
  4. DirkS

    DirkS Dutchman.info VIP

    Posts:
    7,362
    Likes Received:
    6,750
    Lol, has been working for E up until now I guess so who knows :).

    Nah seriously, Said it before, their downfall will be the way they handle this thing. Sheer arrogance and incompetence.
     
  5. Bravo Mod Team

    Bravo Mod Team Moderator, NamePros Moderator PRO VIP Gold Account

    Posts:
    1,708
    Likes Received:
    2,625
    Additions to the quote above:

    Troy Hunt talks about Epik from 27:23 to 43:30.

    If you don't know:
     
  6. DirkS

    DirkS Dutchman.info VIP

    Posts:
    7,362
    Likes Received:
    6,750
    Anyone tried to withdraw funds over the past few days? I want to clear out some balance left but not sure crypto is the safe way to go...
     
  7. DirkS

    DirkS Dutchman.info VIP

    Posts:
    7,362
    Likes Received:
    6,750
  8. mr-x

    mr-x Top Contributor VIP ★★★★★★★★★★

    Posts:
    20,981
    Likes Received:
    37,417
  9. DirkS

    DirkS Dutchman.info VIP

    Posts:
    7,362
    Likes Received:
    6,750
    Federated Identity. That product is going to be rebranded soon, it’ll be called Valido.com

    Edit: transcript shows the wrong domain. Edited to share the right one.
     
    Last edited: Sep 19, 2021
  10. bmugford

    bmugford www.DataCube.com PRO VIP ICA Member ★★★★★★★★★★

    Posts:
    14,114
    Likes Received:
    27,121
    Nope. Please don't try to put words into my mouth.

    I feel for the customers who are dealing with this hack and lack of information and guidance from Epik. I have an Epik account from many years ago, so at least some of my information was likely included in the data breach as well.

    Brad
     
    Last edited: Sep 19, 2021
  11. Future Sensors

    Future Sensors 78% of human domainers will be replaced by robots Gold Account

    Posts:
    2,156
    Likes Received:
    7,799
  12. bmugford

    bmugford www.DataCube.com PRO VIP ICA Member ★★★★★★★★★★

    Posts:
    14,114
    Likes Received:
    27,121
    • Include the date in the title of any announcement so that it's never confused for a potential new breach.
    • Don't say "We take security very seriously." It makes everyone cringe when they read it.
    • Be honest, accept responsibility, and present the facts, along with exactly how we plan to prevent such things in future.
    • Be as detailed as possible with the timeline.
    • Be as detailed as possible in what information was compromised and how it affects customers. If we were storing something we shouldn't have been, be honest about it. It'll come out later and it'll be much worse.
    • Don't name and shame any external parties that might have caused the compromise. It's bad form. (Unless they've already publicly disclosed, in which case we can link to their disclosure).
    • Release the external communication as soon as possible, preferably within a few days of the compromise. The longer you wait, the worse it will be.
    • If possible, get in touch with customers' internal security teams before the general public notice is sent.
     
    Last edited: Sep 19, 2021
  13. Bob Hawkes

    Bob Hawkes Top Member NameTalent VIP Gold Account Trusted Blogger

    Posts:
    7,822
    Likes Received:
    26,759
    It appears that transfer out of domain names is not operational now. At least yesterday it was possible to get Auth Code but, at least for me, not currently.

    I agree we badly need some update with precise information especially regarding payment methods security, whether the method used in hack has been identified and if so has for sure been fixed, and other important information regarding steps that those with assets there should be taking, as well as what steps Epik are taking.

    Bob

    Edit: I mean not possible directly. I did not contact customer support to see if there was another way. I presume they are overwhelmed with inquiries.
     
    Last edited: Sep 19, 2021
  14. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,050
    Likes Received:
    10,929
    If transfer-out doesn't work at all - it is against ICANN rules.
     
  15. DirkS

    DirkS Dutchman.info VIP

    Posts:
    7,362
    Likes Received:
    6,750
    Not necessarily. They will probably be provided through support which isn't against ICANN rules.

    Edit:

    You could argue the reason for this limitation. Are they afraid of domains being stolen, or do they want to prevent people moving away en masse.
     
    Last edited: Sep 19, 2021
  16. mr-x

    mr-x Top Contributor VIP ★★★★★★★★★★

    Posts:
    20,981
    Likes Received:
    37,417
    Some people are clearly enjoying Epik's problems.
     
    Last edited: Sep 19, 2021
  17. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,050
    Likes Received:
    10,929
    Looks that we are in the beginning of Epik's end...
     
    Last edited: Sep 19, 2021
  18. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,050
    Likes Received:
    10,929
  19. Rob Monster

    Rob Monster CEO, Epik Epik.com Staff PRO VIP ★★★★★★★★★★

    Posts:
    4,404
    Likes Received:
    18,617
    There was a EPP maintenance during the last hour. It is finished.

    Should be all systems go. Engineers are working very hard to audit and secure all facets.

    Updates will follow, including an official email this evening.
     
  20. xyo

    xyo Established Member

    Posts:
    74
    Likes Received:
    57
    Well, this is in total a complete clusterf***.

    Always liked that Epik/Rob didn't go with nowadays attitude to cancel anything that is not 100% woke and PC, eventhough that made them a lot of enemies proclaiming them as "far-right" etc.

    After first learing about this breach, I didn't panic and wanted to wait for actual facts to be published.
    Now it's been at least five days since all that data has been publicly released by the hackers for anyone on the internet to be accessed freely.

    Currently I'm not sure what troubles me the most: The fact that a breach of this kind was possible or their reaction up until now.

    Actual information about what data has been breaced should have been communicated directly to all customers so that they are fully aware all of all information that now is more or less publicly available to anyone.

    All in all, I'm not yet sure what I'll do myself, but imho their reaction (or absence of it) until now hasn't made things better :(
     
    Last edited: Sep 19, 2021
  21. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,050
    Likes Received:
    10,929
    Yes, it is rocket science to place Maintenance banner in Control Panel...
     
  22. Corey

    Corey GDBR. com VIP ★★★★★★★★★★

    Posts:
    15,030
    Likes Received:
    18,648
    Thanks @Rob Monster for the update.
    Epik is my Number 1 Registrar, due to the First Class customer service & price.
    #LoveYourWork.

    Cheers
    Corey
     
  23. Rob Monster

    Rob Monster CEO, Epik Epik.com Staff PRO VIP ★★★★★★★★★★

    Posts:
    4,404
    Likes Received:
    18,617
    Thanks. Appreciate the support.

    It has been all-hands on deck all week with many staff working through the night

    Stay well and God bless.
     
  24. Samer

    Samer Restricted (15-30%)

    Posts:
    11,272
    Likes Received:
    21,964
    Thanks @Rob Monster

    Once again, post indicates, following thread.

    Please, keep “fighting” on. (self-defense;
    you are under attack; thank you again posting.

    Samer
     
    Last edited: Sep 19, 2021
  25. Jurgen Wolf

    Jurgen Wolf Top Contributor VIP ★★★★★★★★★★

    Posts:
    12,050
    Likes Received:
    10,929

Want to reply or ask your own question?

It only takes a minute to sign up – and it's free!
Topics / Tags:
biix
  1. NamePros uses cookies and similar technologies. By using this site, you are agreeing to our privacy policy, terms, and use of cookies.
    Dismiss Notice
Loading...