Hacktivist collective Nameless claims to have obtained gigabytes of knowledge from Epik, which gives area title, internet hosting, and DNS providers for quite a lot of shoppers. These embrace the Texas GOP, Gab, Parler, and 8chan, amongst different right-wing websites. The stolen information has been launched as a torrent. The hacktivist collective says that the info set, which is over 180GB in measurement, comprises a “decade’s value of knowledge from the corporate.”
Nameless says the info set is “all that is wanted to hint precise possession and administration of the fascist facet of the Web that has eluded researchers, activists, and, nicely, nearly everyone.” If this info is right, Epik’s prospects’ information and identities might now fall into the arms of activists, researchers, and nearly anybody curious sufficient to take a peek.
A long time of Epik stuff, now in a torrent close to you
Epik is a website registrar and internet providers supplier identified to serve right-wing shoppers, a few of which have been turned down by extra mainstream IT suppliers because of the objectionable and generally illicit content material hosted by the shoppers.
Nameless’ actions started with what the group calls “Operation Jane” after the Texas Heartbeat Act was signed into legislation this month. The restrictive abortion legislation permits personal people, not essentially authorities our bodies or the police, to implement the six-week abortion ban. In keeping with the act, any Texas resident can deliver a civil lawsuit in opposition to any one who performs or helps to facilitate an unlawful abortion—and declare not less than $10,000 in damages.
Among the many information set are varied SQL databases containing what seem like buyer data related to each area title hosted by Epik. Ars analyzed a small subset of the leaked information set, together with what a supply calls an Epik worker’s mailbox, which comprises correspondence from Epik CEO Rob Monster.
Members of one other hacktivist group, Distributed Denial of Secrets and techniques, have additionally made the info set available through alternate means for these unable to make use of torrents.
“We’re not conscious of any breach. We take the safety of our shoppers’ information extraordinarily severely, and we’re investigating the allegation,” an Epik consultant informed Ars.
Hackers alter Epik’s information base to mock firm’s response
Nameless additionally tampered with Epik’s information base to mock the corporate’s denial of the breach.
“On September 13, 2021, a gaggle of youngsters calling themselves ‘Nameless’, whom we’ve by no means heard of, mentioned they handle[d] to come up with, nicely, actually, all our information, after which launched it,” mentioned the altered information base, as seen in an archived copy. “They declare it included all of the consumer information. All of it. All usernames, passwords, e-mails, assist queries, breaching all anonymization service[s] we now have. After all it’s not true. We’re not so silly we would permit that to occur.”
The knowledge-base web page ends by sarcastically saying, “We did write this ourselves, that is clearly not a part of the hacked account.” Epik has since eliminated the web page.
Previous to this incident, Nameless defaced the Texas GOP web site by changing references to “Assist Texas Keep Purple” with “Texas: Taking Voices from Girls to advertise theocratic erosion of church/state limitations.” The group additionally added “donate” hyperlinks to reproductive well being care nonprofit Deliberate Parenthood.