ShellCodeX Breach Report
EpicBot Data Breach
epicbot.com
Verified breach
Passwords exposed
Accounts exposed
816,662
Breach date
01 Sep 2019
Added to tracker
19 Nov 2019
Data classes
4
What happened
In September 2019, the RuneScape bot provider EpicBot suffered a data breach that impacted 817k subscribers. Data from the breach was subsequently shared on a popular hacking forum and included usernames, email and IP addresses and passwords stored as either salted MD5 or bcrypt hashes. EpicBot did not respond when contacted about the incident.
Exposed data
Email addresses
IP addresses
Passwords
Usernames
Recommended actions
- Change your EpicBot password immediately, and update it anywhere you reused the same password.
- Enable two-factor authentication on the affected account and on your critical services (email, banking).
- Watch for targeted phishing emails referencing EpicBot โ attackers weaponise breach data quickly.
- Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected?
Check whether your email address appears in this breach.
Check on HIBP