alert Epik Had A Major Breach

[DaveX]

Just read this. Looks like Epik may have been hacked and sensitive data compromised...

Read here:
https://domainnamewire.com/2021/09/14/hackers-claim-significant-epik-breach/

Thought I would share this.

 

[King]

 

[kam]

The junk email issue now started to emerge.
In the past, I only got 5-10 junk mail per day but now I got 25-30+ per day.

 

[Windoms]

Well, I don't recall seeing them label themselves as the guardian of such. Others labelled them in this manner. My recollection is that they labelled themselves as the guardians of free speech. Don't get me wrong - I don't support some of the sites they have hosted (even if it was in the name of free speech) - but by the same token I think they're a bit mis-characterized by the way they've been labelled.

Its your responsibility to know where you are putting your feet.
You deal with these people, you know you are getting backlash.

This is my 4th data breach … I have already posted it .. but the last breach I was in thoroughly pissed me off .. changing CC numbers and all that … so I left the CC as it was .. sure enough someone used it .. I figured they would .. or was hoping so .. they did .. for two transactions of the exact same amount totaling $2,500 .. a good felony .. so I contacted the CC company .. then I contacted the FBI .. the result netted 18 Arrests .. 18 felony convictions .. what was pertinent to catching the people was the FBI knowing where the CC information was stolen from .. it ended up that they caught one person .. that one person snitched out another person .. that person snitched out another person .. it was a chain reaction among the criminals to try and save their ass while snitching on their friends …

it was quite the event .. I expect the same to happen with this Epik hack .. I have left my CC completely wide open for this .. it is open season to use .. I feel the Epik hack is going to net quite an event of arrests .. everything from the hacker to accomplices who don’t think they have done anything wrong .. intent and participation are everything in a court of law .. I learned something years ago after being arrested .. a judge told me .. ignorance of the law is no excuse ..

Seems like that was fortunate. But I think with basic due diligence anyone could use your card without getting caught. Especially in this case where they dont need accomplices as the info is right there ready to be crafted however they please. I wouldnt leave my card "wide open" on this one, unless you want to go through the hurdles of getting a refund, cancelling the card and getting a new one at a time when you might not want that to happen.

 

[Beezy]

Did not realize that one of the subpoena'ed domains was related to the SolarWinds hack, and that "Malware used against SolarWinds pinged a site hosted by Epik."

https://www.dailydot.com/debug/epik-hack-subpoenas-data-preservation-leak/

 

[eternaldomains]

Did anyone receive a suspicious looking mail allegedly from E?

Got 1 apparently from "maychen" @ E with super suspicious title "follow up". Sounds like a spammer/scammer with spoofed email address but I'm not sure.

 

[tonyk2000]

As for potentially spoofed emails from E, as well as to "leaked" addresses in general.

The following may be helpful to combat phishing:
1) How to get email headers:
https://mxtoolbox.com/Public/Content/EmailHeaders/
2) Understanding An Email Header:
https://mediatemple.net/community/products/dv/204643950/understanding-an-email-header
3) IP address check and extra details:
https://bgp.he.net

Epik dot com appears to be using "quarantine" DMARC [Domain-based Message Authentication Reporting and Conformance] Policy, which means that the following _should_ happen if somebody tries/tried to spoof "From" epik email:

If the email receiver has a quarantine mailbox, this is where the message will be delivered. It will then be up to the administrator of the mailbox to decide if the email gets delivered or thrown away.

I would not count on it though. It the hackers are still in (they changed epik support page once) - then they may also be able to send emails "from" epik addresses using legitimate channels. Who knows...

 

[Zenaller]

It is possible to check if my credit card data(number, CVC, name,address, and other details) from epik account was compromised?

Are there any already known attempts to withdraw money from cards that fell into hands of cybercriminals as a result of epik.com hacking?

 

[eternaldomains]

Did anyone receive a suspicious looking mail allegedly from E?

Got 1 apparently from "maychen" @ E with super suspicious title "follow up". Sounds like a spammer/scammer with spoofed email address but I'm not sure.

Just got off live chat on Epik. Turned out to be legit. Just an email asking me stuff just because I was transferring out many names.

 

[.X.]

It is possible to check if my credit card data(number, CVC, name,address, and other details) from epik account was compromised?

Are there any already known attempts to withdraw money from cards that fell into hands of cybercriminals as a result of epik.com hacking?

no attempts of unauthorized use of financials have reported yet to my knowledge ..

 

[finitecrystal]

Does this profile belong to guys behind all this?

No, that's a research account.

 

[.X.]

No, that's a research account.

I know more than I have posted .. but I am not prepared to release it yet

Edit by moderator: removed inappropriate content

 

[dirk]

I know more than I have posted .. but I am not prepared to release it yet

Please enlighten us... If this is as big as an issue for you as you make it out to be.

 

[.X.]

Please enlighten us... If this is as big as an issue for you as you make it out to be.

I will enlighten you on my time .. not yours .. I can not release certain discovery at this time .. I will release it once it is processed

 

[finitecrystal]

I know more than I have posted .. but I am not prepared to release it yet

You don't know the difference between an anti-fascist research account and a hacker. You can't just accuse the most prominent related account of being the person who did this, unless you have some evidence that is.

Your behaviour, and the behaviour of others here since I've joined, has been incredibly unprofessional, very ironic for a site called "NamePros". Before I go I want to thank those of you who took me seriously and appreciated my contributions. To those of you who couldn't respect me because I don't respect your favourite corporation, I hope you seriously consider your behaviour in this thread, because I don't believe history will look upon your actions here favourably.

Game over, thanks for playing.

Content removed by a moderator.

 

[dirk]

I will enlighten you on my time .. not yours .. I can not release certain discovery at this time .. I will release it once it is processed

So... Not backed up by any verifiable data ATM?

 

[.X.]

So... Not backed up by any verifiable data ATM?

non disclosure

 

[Lox]

Every person can download files and see what's what, share and exchange information. If you follow up the entire Internet (vs Twitter, FB etc), you'll find that all/most of so-so sensitive data is already posted - everywhere.

 

[dirk]

non disclosure

Ok...

 

[DN Playbook]

Why is it that there is so much attention being given by the activists and researchers to the Epik's so called unsavory customers, but all the other registrars and hosting companies that cater to all kinds of other unsavory customers and bad actors are being ignored.

I would guess this has a lot to do with notoriety. Every service provider will on occasion have customers misuse their services and host some unsavory content. But that is completely different from actively courting them and espousing or promoting their views.

 

[Paul]

Temporarily closing the thread until the moderators catch up.

We don't allow threats on NamePros, including vague, ominous threats of doxxing.