Okta's Customer Support Data Breach: Senior Management at Fault
Okta, an identity and authentication management provider, disclosed that a recent data breach in its support case management system affected 134 out of its 18,400 customers. The unauthorized intruder gained access to Okta's systems from September 28 to October 17, 2023, and obtained HAR files containing session tokens that could be used for session hijacking attacks. The breach impacted five customers, including 1Password, BeyondTrust, and Cloudflare. Investigation revealed that the breach occurred due to the abuse of a service account stored in Okta's system, which had privileges to view and update customer support cases. The username and password of the service account were saved to an employee's personal Google account, potentially exposing the credentials. Okta has taken steps to mitigate the breach, including revoking the compromised session tokens and disabling the service account.
- Okta's Recent Customer Support Data Breach Impacted 134 Customers The Hacker News
- No, Okta, senior management, not an errant employee, caused you to get hacked Ars Technica
- Okta employee data compromised in third-party breach SC Media
- Okta Customer Support Breach Exposed Data on 134 Companies DARKReading
- Okta defends 2-week gap in response to identity token theft, says 134 customers affected The Record from Recorded Future News
Reading Insights
0
1
1 min
vs 3 min read
69%
424 → 133 words
Want the full story? Read the original article
Read on The Hacker News