ShellCodeX
Tools โ€ข Events โ€ข News โ€ข Insights
ShellCodeX Breach Report

EpicBot Data Breach

epicbot.com
Limited exposure
Verified breach Passwords exposed
Accounts exposed 816,662
Breach date 01 Sep 2019
Added to tracker 19 Nov 2019
Data classes 4

What happened

In September 2019, the RuneScape bot provider EpicBot suffered a data breach that impacted 817k subscribers. Data from the breach was subsequently shared on a popular hacking forum and included usernames, email and IP addresses and passwords stored as either salted MD5 or bcrypt hashes. EpicBot did not respond when contacted about the incident.

Exposed data

Email addresses IP addresses Passwords Usernames

Recommended actions

  • Change your EpicBot password immediately, and update it anywhere you reused the same password.
  • Enable two-factor authentication on the affected account and on your critical services (email, banking).
  • Watch for targeted phishing emails referencing EpicBot โ€” attackers weaponise breach data quickly.
  • Check whether your email address appears in this breach on haveibeenpwned.com.
Am I affected? Check whether your email address appears in this breach.
Check on HIBP