Gaming / Video Games
A scape bot provider.
The Breach Risk Index (BRI) is a proprietary 0–100 score rating how dangerous a breach is right now, based on how recently the data has been circulating on the dark web and how valuable it is to attackers.
In September 2019, the RuneScape bot provider EpicBot suffered a data breach that impacted approximately 817,000 subscribers. According to multiple breach tracking sources, the compromised data included email addresses, IP addresses, usernames, and passwords—stored as either salted MD5 or bcrypt hashes. EpicBot did not publicly respond or provide further details.
Full threat analysis, exploitation vectors, and principal guidance below.
10 additional sections · verified field analysis · defensive doctrine
834K records analyzed
EpicBot is a scape bot provider.
EpicBot is a scape bot provider. Services like this typically hold email addresses, IP addresses, passwords, usernames through account registration and normal operations.
The EpicBot dataset circulated publicly; treat as part of the standing exposure landscape.
The exposure of credentials alongside personal data heightened account-takeover and reuse risk for EpicBot users and drew scrutiny of its data protection.
• Credential stuffing against reused passwords across other platforms | • Targeted phishing campaigns using exposed email addresses
A consumer-service breach: contact and account data supports phishing, account takeover and profile enrichment. For a high-profile principal the main risk is credible impersonation and enrichment of existing exposure.
Enter your email to check whether your data appears in this breach. We’ll send a 6-digit code to confirm it’s your address.
Be the first to know when new breaches are disclosed. Free forever — confirm your email with a 6-digit code.
Executives, public figures, and high-visibility operators can receive tailored exposure intelligence and hardening guidance.
Request Consultation