AskCyberSecurity.com

Cyber Security News & Information

AskCyber Home » News » News » Domain Name Registrar Epik Announces Cyber Security Incident

Domain Name Registrar Epik Announces Cyber Security Incident

by

Epik Anonymous Attack

Hacking Group Anonymous Claims Responsibility for Attack

Note: We may earn a commission from products or services when you click on a link and make a purchase.

Domain Name registrar Epik appears to have been compromised by cybercriminals. Epik sent out an email to those who have domain names registered with the company.

The email from Epik CEO, Rob Monster states, “At Epik, we take security and the privacy of your information very seriously. Therefore, as a precautionary measure, I am writing to inform you of an alleged security incident involving Epik.”

The scope of the cybersecurity incident has not been disclosed and there is no information on Epik’s website.

READ Feds Say Single-Factor Authentication is a Bad Practice

The well-known hacking group going Anonymous has claimed responsibility for the attack says Gizmodo. The hackers claimed to have stolen:

  • All domain purchases
  • All domain transfers in/out
  • All whois history, unredacted
  • All DNS changes
  • All email forwards, catch-alls, etc
  • Payment history (no credit card data, don’t get excited, FBI, we’re not in that game)
  • Account credentials for:
  • all Epik customers, hosting, Anonymize VPN
  • Epik internal systems, servers
  • Epik’s GoDaddy logins
Heimdel Malware Protection
Get Heimdel Malware Protection

Anonymous is claiming they heisted 180 gigabytes of data available for sale to the public. A pdf file with the claim was posted on the Domain Name Wire website.

Hacktivist group posted the stolen Epik data on their site. The data includes:

According to the hackers, the contents include:

  • Domain purchases
  • Domain transfers
  • WHOIS history
  • DNS changes
  • Email forwards, catch-alls, etc.
  • Payment history
  • Account credentials
  • Over 500,000 private keys
  • An employee’s mailbox
  • Git repositories
  • /home/ and /root/ directories of a core system

Epik is a domain name registrar based in Sammamish, WA. The company is a subsidiary of BitMitigate.

You may know Epik as the domain name registrar that infamous conservative chat site Parler moved to. Parker was booted off their web host after the Capitol Hill Riots in the United States on January 6, 2021. Epik has also hosted Gab, 8chan, BitChute, the Daily Stormer as well as sites for the Proud Boys and Oath Keepers.

“Our internal team, working with external experts, have been working diligently to address the situation. We are taking proactive steps to resolve the issue,” says the email from Epik

About Michelle Dvorak

Michelle writes about cyber security, data privacy focusing on social media privacy as well as how to protect your IoT devices. She has worked in internet technology for over 20 years and owns METRONY, LLC. Michelle earned a B.S. in Engineering from Rensselaer Polytechnic Institute. Michelle published a guide to Cyber Security for Business Travelers