Hacking Group Anonymous Claims Responsibility for Attack
Note: We may earn a commission from products or services when you click on a link and make a purchase.
Domain Name registrar Epik appears to have been compromised by cybercriminals. Epik sent out an email to those who have domain names registered with the company.
The email from Epik CEO, Rob Monster states, “At Epik, we take security and the privacy of your information very seriously. Therefore, as a precautionary measure, I am writing to inform you of an alleged security incident involving Epik.”
The scope of the cybersecurity incident has not been disclosed and there is no information on Epik’s website.
READ Feds Say Single-Factor Authentication is a Bad Practice
The well-known hacking group going Anonymous has claimed responsibility for the attack says Gizmodo. The hackers claimed to have stolen:
- All domain purchases
- All domain transfers in/out
- All whois history, unredacted
- All DNS changes
- All email forwards, catch-alls, etc
- Payment history (no credit card data, don’t get excited, FBI, we’re not in that game)
- Account credentials for:
- all Epik customers, hosting, Anonymize VPN
- Epik internal systems, servers
- Epik’s GoDaddy logins
Anonymous is claiming they heisted 180 gigabytes of data available for sale to the public. A pdf file with the claim was posted on the Domain Name Wire website.
Hacktivist group posted the stolen Epik data on their site. The data includes:
According to the hackers, the contents include:
- Domain purchases
- Domain transfers
- WHOIS history
- DNS changes
- Email forwards, catch-alls, etc.
- Payment history
- Account credentials
- Over 500,000 private keys
- An employee’s mailbox
- Git repositories
- /home/ and /root/ directories of a core system
Epik is a domain name registrar based in Sammamish, WA. The company is a subsidiary of BitMitigate.
You may know Epik as the domain name registrar that infamous conservative chat site Parler moved to. Parker was booted off their web host after the Capitol Hill Riots in the United States on January 6, 2021. Epik has also hosted Gab, 8chan, BitChute, the Daily Stormer as well as sites for the Proud Boys and Oath Keepers.
“Our internal team, working with external experts, have been working diligently to address the situation. We are taking proactive steps to resolve the issue,” says the email from Epik