PanamaTimes

Friday, Mar 29, 2024

Huge hack reveals embarrassing details of who’s behind Proud Boys and other far-right websites

Huge hack reveals embarrassing details of who’s behind Proud Boys and other far-right websites

Epik long has been the favorite internet company of the far right, providing domain services to QAnon theorists, Proud Boys and other instigators of the Jan. 6 attack on the U.S. Capitol — allowing them to broadcast hateful messages from behind a veil of anonymity.
But that veil abruptly vanished last week when a huge breach by the hacker group Anonymous dumped into public view more than 150 gigabytes of previously private data — including user names, passwords and other identifying information of Epik’s customers.

Extremism researchers and political opponents have treated the leak as a Rosetta Stone to the far right, helping them to decode who has been doing what with whom over several years. Initial revelations have spilled out steadily across Twitter since news of the hack broke last week, often under the hashtag #epikfail, but those studying the material say they will need months and perhaps years to dig through all of it.

“It’s massive. It may be the biggest domain-style leak I’ve seen and, as an extremism researcher, it’s certainly the most interesting,” said Megan Squire, a computer science professor at Elon University who studies right-wing extremism. “It’s an embarrassment of riches — stress on the embarrassment.”

Epik, based in the Seattle suburb of Sammamish, has made its name in the internet world by providing critical web services to sites that have run afoul of other companies’ policies against hate speech, misinformation and advocating violence. Its client list is a roll-call of sites known for permitting extreme posts and that have been rejected by other companies for their failure to moderate what their users post.

Online records show those sites have included 8chan, which was dropped by its providers after hosting the manifesto of a gunman who killed 51 Muslims in Christchurch, New Zealand, in 2019; Gab, which was dropped for hosting the anti-Semitic rants of a gunman who killed 11 in a Pittsburgh synagogue in 2018; and Parler, which was dropped by Amazon Web Services due to lax moderation related to the Jan. 6 Capitol attack.

Epik also provides services to a network of sites devoted to extremist QAnon conspiracy theories. Epik briefly hosted the neo-Nazi site Daily Stormer in 2019 after acquiring a cybersecurity company that had provided it with hosting services, but Epik soon canceled that contract, according to news reports. Epik also stopped supporting 8chan after a short period of time, the company has said.

Earlier this month, Epik also briefly provided service to the anti-abortion group Texas Right to Life, whose website ProLifeWhistleblower.com was removed by the hosting service GoDaddy because it solicited accusations about which medical providers might be violating a state abortion ban.

An Epik attorney said the company stopped working with the site because it violated company rules against collecting people’s private information. Online records show Epik was still the site’s domain registrar as of last week, though the digital tip line is no longer available, and the site now redirects to the group’s homepage.

Epik founder Robert Monster’s willingness to provide technical support to online sanctuaries of the far right have made him a regular target of anti-extremism advocates, who criticized him for using Epik’s tools to republish the Christchurch gunman’s manifesto and the livestream video the killer had made of the slaughter.

Monster also used the moment as a marketing opportunity, saying the files were now “effectively uncensorable,” according to screenshots of his tweets and Gab posts from the time. Monster also urged Epik employees to watch the video, which he said would convince them it was faked, Bloomberg News reported.

Monster has defended his work as critical to keeping the internet uncensored and free, aligning himself with conservative critics who argue that leading technology companies such as Facebook, Twitter, Amazon and YouTube have gone too far in policing content they deem inappropriate.

Monster did not respond to requests for comment from The Washington Post. But he said in an email to customers two days after hackers announced the breach that the company had suffered an “alleged security incident” and asked customers to report back any “unusual account activity.”

“You are in our prayers today,” Monster wrote last week, as news of the hack spread. “When situations arise where individuals might not have honorable intentions, I pray for them. I believe that what the enemy intends for evil, God invariably transforms into good. Blessings to you all.”

Since the hack, Epik’s security protocols have been the target of ridicule among researchers, who’ve marveled at the site’s apparent failure to take basic security precautions such as routine encryption that could have protected data about its customers from becoming public.

The files include years of website purchase records, internal company emails and customer account credentials revealing who administers some of the biggest far-right websites. The data includes client names, home addresses, email addresses, phone numbers and passwords left in plain, readable text. The hack even exposed the personal records from Anonymize, a privacy service Epik offered to customers wanting to conceal their identity.

Similar failings by other hacked companies have drawn scrutiny from the Federal Trade Commission, which has probed companies such as dating site Ashley Madison for failing to protect their customers’ private data from hackers. FTC investigations have resulted in settlements imposing financial penalties and more rigorous privacy standards.

“Given Epik’s boasts about security, and the scope of its web hosting, I would think it would be an FTC target, especially if the company was warned but failed to take protective action,” said David Vladeck, a former head of the FTC’s consumer protection bureau, now at Georgetown University Law Center. “I would add that the FTC wouldn’t care about the content — right wing or left wing; the questions would be the possible magnitude and impact of the breach and the representations . . . the company may have made about security.”

The FTC declined to comment.

Researchers poring through the trove say the most crucial findings concern the identities of people hosting various extremist sites and the key role Epik played in keeping material online that might otherwise have vanished from the internet — or at least the parts of the internet that are easily stumbled upon by ordinary users.

“The company played such a major role in keeping far-right terrorist cesspools alive,” said Rita Katz, executive director of SITE Intelligence Group, which studies online extremism. “Without Epik, many extremist communities — from QAnon and white nationalists to accelerationist neo-Nazis — would have had far less oxygen to spread harm, whether that be building toward the January 6 Capitol riots or sowing the misinformation and conspiracy theories chipping away at democracy.”

The breach, first reported by the freelance journalist Steven Monacelli, was made publicly available for download last week alongside a note from Anonymous hackers saying it would help researchers trace the ownership and management of “the worst trash the Internet has to offer.”

After the hackers’ announcement, Epik initially said it was “not aware of any breach.” But in a rambling, three-hour livestream last week, Monster acknowledged there had been a “hijack of data that should not have been hijacked” and called on people not to use the data for “negative” purposes.

“If you have a negative intent to use that data, it’s not going to work out for you. I’m just telling you,” he said. “If the demon tells you to do it, the demon is not your friend.”

Several domains in the leak are associated with the far-right Proud Boys group, which is known for violent street brawls and involvement in the Jan. 6 attack on the Capitol and was banned by Facebook in 2018 as a hate group.

A Twitter account, @epikfailsnippet, that is posting unverified revelations from the leaked data, included a thread purporting to expose administrators of the Proud Boys sites. One man who was identified by name as administrator of a local Proud Boys forum was said to be an employee of Drexel University; the university said he hasn’t worked at Drexel since November 2020.

Technology news site the Daily Dot reported that Ali Alexander, a conservative political activist who played a key role in spreading false voter fraud claims about the 2020 presidential election, took steps after the Jan. 6 siege to obscure his ownership of more than 100 domains registered to Epik. Nearly half reportedly used variations of the “Stop the Steal” slogan pushed by Alexander and others. Alexander did not reply to requests for comment from the Daily Dot or, on Tuesday, from The Post.

Extremism researchers urge careful fact-checking to protect credibility, but the data remains tantalizing for its potential to unmask extremists in public-facing jobs.

Emma Best, co-founder of Distributed Denial of Secrets, a nonprofit whistleblower group, said some researchers call the Epik hack “the Panama Papers of hate groups,” a comparison to the leak of more than 11 million documents that exposed a rogue offshore finance industry. And, like the Panama Papers, scouring the files is labor intensive, with payoffs that could be months away.

“A lot of research begins with naming names,” Best said. “There’s a lot of optimism and feeling of being overwhelmed, and people knowing they’re in for the long haul with some of this data.”
Comments

David Brown 3 year ago
Nothing but click-bait that references an illegal hack followed by an article that bashes conservatism with lies and reveals NONE of the "embarrassing details" of who exactly has been revealed or embarrassed.

Newsletter

Related Articles

PanamaTimes
0:00
0:00
Close
Apple warns against drying iPhones with rice
In a recent High Court hearing, the U.S. argued that Julian Assange endangered lives by releasing classified information.
Global Law Enforcement Dismantles Lockbit Ransomware Operation
Russian opposition leader Alexey Navalny has died at the Arctic prison colony
The President of Argentina Javier Mile does not fly private, he flies commercial, with the citizens he represents. And they LOVE him for it.
Bitcoin Reaches $50,000 for First Time in Over Two Years
Belo Horizonte: Brazil's Rising Carnival Hotspot for 2024
In El Salvador, the 'Trump of Latin America' stuns the world with a speech slamming woke policing after winning a landslide election
Tucker’s interview with Putin is over 50M views on X within the first 5 hours.
Finnish Airline, Finnair, is voluntarily weighing passengers to better estimate flight cargo weight
President Nayib Bukele has proudly announced El Salvador's remarkable achievement of becoming the safest nation in the Western Hemisphere.
Former Chilean President Sebastian Piñera Dies in Helicopter Crash
This farmer seems to understand science a bit more than the event organizer, Klaus Schwab.
Facebook turns 20: From Mark Zuckerberg's dormitory to a $1trn company
The Coolest Dictator in the World" on the Path to Victory in El Salvador
Macron, France and fake news
Indian-Origin Man 'King' Arrested For Smuggling $16 Million Drugs Into US
Can someone teach Americans that not every person with slanted eyes is Chinese?
Europe's Farmers Feeding the People, Protesting Against Politicians Who Do Nothing for Their Country and Serve Only Themselves at Taxpayers' Expense
Paris Restaurant That Inspired 'Ratatouille' Loses $1.6 Million Worth Of Wine
Brazilian Police Investigate Bolsonaro's Son for Alleged Illegal Spying
Police in Brazil Raid Residence of Bolsonaro Associate Over Allegations of Illegal Spying
Border Dispute Escalates as Texas Governor Vows Increased Razor Wire
OpenAI Enhances ChatGPT-4 Model, Potentially Addressing AI "Laziness" Issue
The NSA finally acknowledges spying on Americans by acquiring sensitive data
Report Reveals Toxic Telegram Group Generating X-Rated AI-Generated Fake Images of Taylor Swift
US Border Patrol States 'No Plans' to Remove Razor Wire Installed in Texas
Bitcoin Experiences Approximately 20% Decline in Value
Klaus Schwab recently appointed himself as the Earth's "trustee of the future."
DeSantis Drops Out, Endorses Trump.
Nikki Haley said former President Trump is "just not at the same level" of mental fitness as he was while president in 2016.
Residents of a southern Mexican town set the government palace on fire in response to the police killing of a young man
Samsung Launches AI-Driven Galaxy S24, Ushering in New Smartphone Era
Judge Questions SEC's Regulatory Overreach in Coinbase Lawsuit
The Ecuador prosecutor who was investigating the television studio attack, has been assassinated.
Is artificial intelligence the solution to cyber security threats?
Vivek Ramaswamy suspends his US election campaign and endorses Trump.
Viral Satire: A Staged Satirical Clip Mistaken as Real Footage from the 2024 World Economic Forum in Davos
The AI Revolution in the Workforce: CEOs at Davos Predict Major Job Cuts in 2024
Ecuador Reports 178 Hostages in Prison Gang Standoff
The Startling Cuban Espionage Case That Has Rattled the US Government
Two Armed Men in Ecuador, Dressed as Batman and The Joker Storm the Streets.
Armed Gang Raids Ecuadorian TV Station Following State of Emergency Declaration
Anti-Democratic Canada: Journalist Arrested for Questioning Canadian Finance Minister on Support of Terrorist Group
Ecuador's 'Most-Wanted' Criminal Vanishes from Prison
Mexican Cartel Supplied Wi-Fi to Locals Under Threat of Fatal Consequences for Non-Compliance
Border Surge Leads to Over 11,000 Migrants Waiting in Northern Mexico
Outsider Candidates Triumph in Latin American Elections
As Argentina Goes to the Polls, Will the Proposal to Replace the Peso with the Dollar Secure Votes?
Fatal Shark Attack Claims Life of Boston Woman Paddleboarding Near Bahamas Resort, According to Police
×