Cybersecurity Breach: 1Password and Okta Face Suspicious Activity and Market Cap Loss
Password management solution 1Password detected suspicious activity on its Okta instance following a support system breach, but confirmed that no user data was compromised. The breach involved a threat actor attempting to access an IT team member's user dashboard and manipulating authentication flows. 1Password has implemented additional security measures, including denying logins from non-Okta IDPs and tightening multi-factor authentication rules. The incident shares similarities with a known campaign targeting super admin accounts. Okta recently disclosed a breach where threat actors stole sensitive HAR files, impacting about 1% of its customer base.