Talk:2021 Epik data breach

This is the talk page for discussing improvements to the 2021 Epik data breach article. This is not a forum for general discussion of the article's subject.

Put new text under old text. Click here to start a new topic. New to Wikipedia? Welcome! Learn to edit; get help. Assume good faith Be polite and avoid personal attacks Be welcoming to newcomers Seek dispute resolution if needed Article policies Neutral point of view No original research Verifiability

Find sources: Google (books · news · scholar · free images · WP refs) · FENS · JSTOR · TWL

This article is rated C-class on Wikipedia's content assessment scale. It is of interest to multiple WikiProjects.

Computer Security: Computing Mid‑importance This article is within the scope of WikiProject Computer Security, a collaborative effort to improve the coverage of computer security on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks. Mid This article has been rated as Mid-importance on the project's importance scale. This article is supported by WikiProject Computing. Things you can help WikiProject Computer Security with: Article alerts will be generated shortly by AAlertBot. Please allow some days for processing. More information... Answer question about Same-origin_policy Review importance and quality of existing articles Identify categories related to Computer Security Tag related articles Identify articles for creation (see also: Article requests) Identify articles for improvement Create the Project Navigation Box including lists of adopted articles, requested articles, reviewed articles, etc. Find editors who have shown interest in this subject and ask them to take a look here. Internet culture Low‑importance This article is within the scope of WikiProject Internet culture, a collaborative effort to improve the coverage of internet culture on Wikipedia. If you would like to participate, please visit the project page, where you can join the discussion and see a list of open tasks. Low This article has been rated as Low-importance on the project's importance scale. WikiProject Internet culture To-do: edit history watch purge Here are some tasks awaiting attention: Article requests : View all requested internet culture articles Expand : Pick an article from here or here Photo : Category:Internet culture articles needing images Stubs : All stubs are located here Other : Category:Internet self-classification codes (!?); Try to get YouTube to FA; Tag all articles you find with {{WikiProject Internet culture}} See also Category:Internet culture articles needing attention United States Low‑importance United States portal This article is within the scope of WikiProject United States, a collaborative effort to improve the coverage of topics relating to the United States of America on Wikipedia. If you would like to participate, please visit the project page, where you can join the ongoing discussions. Template Usage Articles Requested! Become a Member Project Talk Alerts Low This article has been rated as Low-importance on the project's importance scale.

Credit card numbers

Latest comment: 2 years ago3 comments2 people in discussion

From what I get from the first announcement (not a RS and likely ironic), the full credit card numbers were poorly protected but not fully exposed in the leak, because of legal considerations (guess shortening them can be automated with some kind of regex). Some sources seem to suggest otherwise or are at best ambiguous. I am mostly looking for some clarification, don't think this needs more details in this article and would otherwise need sources and probably more time (it may also be a joke from the start as far as I can tell). 176.247.148.163 (talk) 23:56, 30 September 2021 (UTC)Reply

From The Washington Post: "Materials from the hack reviewed by The Post include not just names and home addresses but also full credit card numbers, unencrypted passwords and other highly sensitive data."

My understanding is that the people who released the data tried to obfuscate credit card numbers, but missed some (I suspect likely due to the enormous size of the data dump). GorillaWarfare (she/her • talk) 00:04, 1 October 2021 (UTC)Reply

Thanks, that's not what I would call "ambiguous" and is as clear as things can get for now (I should probably also remember that reading some Washington Post articles online for free is way easier than it looks like). The article doesn't mention if the numbers were encrypted (guess spotting and obfuscating even poorly encrypted credit card numbers is more challenging than plain text ones, not sure of the legal implications and, yeah, I'm digressing)176.247.148.163 (talk) 04:06, 1 October 2021 (UTC)Reply

New sources

Latest comment: 2 years ago2 comments1 person in discussion

• "Leaked Data Shows Epik Registered Site Associated With Neo-Nazi Terror" from Hannah Gais at the SPLC
• "Infowars Director Bought Domain Named After Terrorist" from Hannah Gais, Michael Edison Hayden, and Megan Squire at the SPLC

GorillaWarfare (she/her • talk) 21:12, 16 November 2021 (UTC)Reply

Another: CNN: "Epik is a refuge for the deplatformed far right. Here's why its CEO insists on doing it" GorillaWarfare (she/her • talk) 16:40, 9 December 2021 (UTC)Reply