Announcement

Epic for iOS and Android are live in the App Store and the Android Play Store. We're EpicBrowser on Twitter and on Facebook. Please feel free to also email our Founder directly with issues or questions: alok at hiddenreflex dot com

Pages: 1

#1 Re: Epic Privacy Browser - Help & Troubleshooting » Password reset link returns not private connection » 2021-06-04 12:55:39

heH4cvu9CA

Ok i figured it out.

It's nothing to do with plugins as I've tried on Epic Browser, Mozilla and Brave and none of them worked despite each having different plugin configurations.

It's not my VPN or wifi or cellular connection.

What happens is that i received the email from admin@epicsearch.in on my Gmail and it contained the following:


"Please go to the following page and choose a new password:
198.211.126.135/reset/XqXEQ/xxxqqqxxxxqqqqxxxx/

epicsearch.in, 4521 S Plains Drive, Sioux Falls, South Dakota, 57106, United States"

Obviously i changed the actual link details above to xxqq.
What happened when I clicked that link is that a long string of characters were added automatically to the above link and that's what was deemed dangerous by all the browsers.

What was interesting was that even if I just copied the text of the link and pasted in the browser it still added that weird extra string.

What I did is copy it in a text editor to strip it of any extra formatting and then re copied and pasted into the browser and the extra string didn't show up anymore and the actual page opened and i could then successfully change the password.

I'm a bit concerned about this, why would that extra bit of text appear automatically at the end of the link? Seeing that the email came from a trusted source (admin@epicsearch.in) and it was received on gmail.com.

Please clear this up please ?

#2 Re: Epic Privacy Browser - Help & Troubleshooting » Password reset link returns not private connection » 2021-06-04 10:54:28

heH4cvu9CA

Your connection is not private
Attackers might be trying to steal your information from tracking.epicsearch.in (for example, passwords, messages, or credit cards). Learn more

NET::ERR_CERT_COMMON_NAME_INVALID

tracking.epicsearch.in normally uses encryption to protect your information. When Chromium tried to connect to tracking.epicsearch.in this time, the website sent back unusual and incorrect credentials. This may happen when an attacker is trying to pretend to be tracking.epicsearch.in, or a Wi-Fi sign-in screen has interrupted the connection. Your information is still secure because Chromium stopped the connection before any data was exchanged.

You cannot visit tracking.epicsearch.in right now because the website uses HSTS. Network errors and attacks are usually temporary, so this page will probably work later.

#3 Epic Privacy Browser - Help & Troubleshooting » Password reset link returns not private connection » 2021-06-04 10:46:50

heH4cvu9CA
Replies: 4

I clicked on resetting my password for Epicsearch.in and the link i received opens up with a warning that connection is not private and website is now using HSTS.

Any idea on why the certificate is not valid?

Pages: 1

Board footer