Okta's Support System Breach Exposes Customer Data and Causes Stock Plunge
Okta, an identity services provider, disclosed a security incident where threat actors used stolen credentials to access its support case management system, allowing them to view files uploaded by certain Okta customers. The company emphasized that its production Okta service was not impacted, but warned that the support system breach exposed sensitive data, including session tokens. Okta has worked with affected customers to revoke session tokens and prevent abuse. BeyondTrust and Cloudflare confirmed they were targeted in the attack, with Cloudflare stating that the threat actor compromised two employee accounts within the Okta platform. Okta has faced multiple security incidents in recent years due to its high-value target status.
- Okta's Support System Breach Exposes Customer Data to Unidentified Threat Actors The Hacker News
- Okta shares fall 11% after company says client files were accessed by hackers via its support system CNBC
- Hackers Stole Access Tokens from Okta's Support Unit – Krebs on Security Krebs on Security
- Why Okta Stock Got Crushed Friday The Motley Fool
- Okta says hackers breached its support system and viewed customer files Ars Technica
Reading Insights
0
0
2 min
vs 3 min read
79%
513 → 109 words
Want the full story? Read the original article
Read on The Hacker News