A group claims that it has hacked Epik and downloaded significant data.
A group says it has hacked domain name registrar Epik and released a trove of data online.
A posting (see PDF version) claims that the hackers gained access to data about all domain purchases, transfers, all Whois history (unredacted), all email forwards, account credentials for customers, internal systems, and a lot more.
I have not independently verified the veracity of the claims, nor reviewed the large file the hackers released. I reached out to Epik CEO Rob Monster this morning to ask for a comment but did not immediately hear back. At the time of publishing, Epik has not posted anything to its blog, news page, or official twitter account regarding the apparent incident.
However, Monster responded to one of the people who tweeted about the hack yesterday, linking to a domain registered at Epik that says negative things about the person who posted the link. The tweet states, “Chad – I know that you are keen to get a client of Epik to take down a damning URL that does not reveal your highest self. I try hard to give everyone the benefit of the doubt but your latest tactic needs to stop right now.”
It’s unclear if Monster is suggesting that the person had anything to do with the hack, and the tweet doesn’t deny that Epik was hacked.
The apparent hack appears to be in response to Epik being a favored registrar for far-right sites. The hack notice states:
NOTORIOUS “HACKERS ON ESTRADIOL” PRESENT GRAND REVEAL OF ROB “HITLER SHOULD’VE WON” MONSTER’S EPIK FAILURE
You know, when you name a company “Epik”,
that implies something really big’s going to happen.
Deserving of the name.
Well, after years of bolstering the worst trash the Internet has to offer,
this is, truly, the Epik moment we’ve all been waiting for.
It also mentions recent efforts to take down an anti-abortion website.
Epik came under fire this month when a Texas anti-abortion group moved its “whistleblower” domain name to Epik after GoDaddy asked it to leave. Epik quickly shut the site down too. Epik said the site, which asked people to submit information about people in Texas getting abortions, violated its terms and asked the group to remove the content.
On Tuesday evening, Rob Monster responded: “We are assessing and don’t have any evidence of any domains compromised. Our team has been diligently assessing the claims and proactively securing systems.”
On Wednesday, September 15, Epik C”EO Rob Monster sent this message to customers:
At Epik, we take security and the privacy of your information very seriously. Therefore as a precautionary measure, I am writing to inform you of an alleged security incident involving Epik.
Our internal team, working with external experts, have been working diligently to address the situation. We are taking proactive steps to resolve the issue. We will update you on our progress. In the meantime please let us know if you detect any unusual account activity. I am proud of our team’s efforts as we do our part to empower a thriving internet for the benefit of our customers around the world.
You are in our prayers today. We are grateful for your support and prayer. When situations arise where individuals might not have honorable intentions, I pray for them. I believe that what the enemy intends for evil, God invariably transforms into good.
Blessings to you all.