Share this page!

Enter URL or ID to Unroll

You can paste full URL like: https://x.com/threadreaderapp/status/1644127596119195649
or just the ID like: 1644127596119195649

How to get URL link on X (Twitter) App

  1. On the Twitter thread, click on or icon on the bottom
  2. Click again on or Share Via icon
  3. Click on Copy Link to Tweet
  4. Paste it above and click "Unroll Thread"!
  5. More info at Twitter Help
Mikael Thalen Profile picture
@MikaelThalen
Sep 16, 2021 9 tweets 5 min read Read on X
Scrolly
NEW: The hack of web hosting company Epik has revealed the names behind some of the most notorious far-right sites.

A cybersecurity expert I analyzed the data with said Epik was “fully compromised.”

“Maybe the worst I’ve ever seen in my 20-year career.” dailydot.com/debug/epik-hac…
As first revealed on Monday by @stevanzetti, the hacking collective Anonymous announced that it had hacked Epik, whose customers have included Parler, Gab, and forums such as TheDonald. dailydot.com/debug/epik-hac…
As I noted yesterday, the breach includes the email inbox of an Epik employee that regularly spoke with CEO Robert Monster.

I attempted to speak over the phone with Monster by calling him on the personal cell number listed in his email signature but did not receive a reply.
The massive data trove includes, among other things, the names, addresses, phone numbers, and email addresses of those who registered web domains with Epik.

dailydot.com/debug/epik-hac…
I was able to verify the data by calling numerous people, including the individual who registered the domain patriots.win–home to the massive pro-Trump forum known as TheDonald.

dailydot.com/debug/epik-hac…
A database titled “intrust.sql”–which appears related to Epik’s 2011 purchase of domain name registrar IntrustDomains–even included credit card numbers stored in plaintext (although the cards appear expired).

Even some passwords were stored in plaintext.dailydot.com/debug/epik-hac…
Update: There are also *current* credit card numbers stored in plain text in the data breach.

dailydot.com/debug/epik-hac…
Although the press release from Anonymous claimed no credit card data was present, I can confirm that there are credit card numbers stored in plaintext.

The cybersecurity expert who analyzed the data with me summed up the breach as so: dailydot.com/debug/epik-hac…
Just to point out, even though Epik has a service to anonymize registrar information (so that people can't see who registered a certain domain), there is an entire database that lists the personal information of all the 'anonymized' users. dailydot.com/debug/epik-hac…

• • •

Missing some Tweet in this thread? You can try to force a refresh
 

Keep Current with Mikael Thalen

Mikael Thalen Profile picture

Stay in touch and get notified when new unrolls are available from this author!

Read all threads

This Thread may be Removed Anytime!

PDF

Twitter may remove this content at anytime! Save it as PDF for later use!

Try unrolling a thread yourself!

how to unroll video
  1. Follow @ThreadReaderApp to mention us!

  2. From a Twitter thread mention us with a keyword "unroll"
@threadreaderapp unroll

Practice here first or read more on our help page!

More from @MikaelThalen

Mikael Thalen Profile picture
Jan 19, 2023
NEW: The federal No Fly List was exposed on an open server discovered by a security researcher last week.

The list, which was being stored by the US airline CommuteAir, contained over 1.5 million rows of data including names, aliases, & birth dates. dailydot.com/debug/no-fly-l…
The server, discovered by hacker @_nyancrimew, was secured prior to publication.

CommuteAir says the list was a version from 2019.

The Daily Dot was able to find numerous high-profile figures including the recently-freed Russian arms dealer Viktor Bout & at least 16 aliases.
The infrastructure, described by CommuteAir as a development server, also contained the names, addresses, phone numbers & passport numbers of over 900 CommuteAir staff including pilots & crew.

CommuteAir says an initial investigation shows that no customer data was exposed.
Read 5 tweets
Mikael Thalen Profile picture
Dec 16, 2022
After banning @elonjet, which he said he wouldn’t, Musk has now banned @joinmastodon after it tweeted that users could follow the jet-tracking account on their platform.
It appears Washington Post journalist @drewharwell was suspended as well for pointing out that Mastodon was suspended for promoting ElonJet, which I also just did in the above tweet.
New York Times journalist Ryan Mac has now been suspended for merely mentioning Musk’s suspension of Mastodon and ElonJet.
Read 12 tweets
Mikael Thalen Profile picture
Oct 28, 2022
A blog run by David Depape, the Berkley man accused of attacking Paul Pelosi with a hammer, has articles titled 'Hitler did nothing wrong,' 'Black pilled,' and 'Pedophile normalization.' Image
Source: heavy.com/news/david-dep…
Correction: 'Hitlery' was autocorrected to 'Hitler.'

The specific blog post in question is referring to former Secretary of State Hillary Clinton.
Read 6 tweets
Mikael Thalen Profile picture
Oct 28, 2022
A fake statement from Donald Trump congratulating Elon Musk on his acquisition of Twitter is spreading online.

The fabricated quote claims Trump's account will be reinstated Monday & that the ex-president is "Happy to be able to engage with an African-American owned business." twitter.com/i/web/status/1…
It appears the Independent briefly ran with the false claim but has since changed the article's headline.

The incorrect article has already been aggregated by Yahoo News.

webcache.googleusercontent.com/search?q=cache…
Read 4 tweets
Mikael Thalen Profile picture
Jul 25, 2022
NEW: An anti-vaccine dating website that allows users to donate “mRNA FREE” semen left its users’ personal data exposed online.

dailydot.com/debug/anti-vax…
The site that was leaking user data, known as 'Unjected,' is similar in design to Twitter but is often referred to as the “Tinder for anti-vaxxers.”

Users can advertise their 'mRNA FREE' blood, sperm, or eggs to one another.
dailydot.com/debug/anti-vax…
Security researcher @GeopJr1312 discovered that Unjected's web application framework had been left in debug mode.

From there they were able to find the private email addresses for the site's roughly 3,500 members.

dailydot.com/debug/anti-vax…
Read 6 tweets
Mikael Thalen Profile picture
Feb 28, 2022
NEW: Despite the significant uptick of hacking & leaking amid Russia's invasion of Ukraine, every single method offered by WikiLeaks to submit them documents is broken.

Every submission option featured by WikiLeaks leads to broken sites & errors.

dailydot.com/debug/submitti…
On WikiLeaks submission page, users are asked to visit their onion service on the dark web to securely provide them leaks...

Yet their server isn't even online. dailydot.com/debug/submitti…
WikiLeaks also offers a clearnet webchat where users can be assisted in accessing the tor network in order to securely provide them with leaks.

Yet the domain is 502. dailydot.com/debug/submitti…
Read 9 tweets

Did Thread Reader help you today?

Support us! We are indie developers!

This site is made by just two indie developers on a laptop doing marketing, support and development! Read more about the story.

Become a Premium Member ($3/month or $30/year) and get exclusive features!

Become Premium

Don't want to be a Premium member but still want to support us?

Make a small donation by buying us coffee ($5) or help with server cost ($10)

Donate via Paypal

Or Donate anonymously using crypto!

Ethereum

0xfe58350B80634f60Fa6Dc149a72b4DFbc17D341E copy

Bitcoin

3ATGMxNzCUFzxpMCHL5sWSt4DVtS8UqXpi copy

Thank you for your support!

Follow Us!

Send Email!

:(