tldrdaily.news logo
Tag

Data Breach Cyber Attack

All articles tagged with #data breach cyber attack

Okta's Customer Support Data Breach: Senior Management at Fault

Originally Published 2 years ago — by The Hacker News

Featured image for Okta's Customer Support Data Breach: Senior Management at Fault
Source: The Hacker News

Okta, an identity and authentication management provider, disclosed that a recent data breach in its support case management system affected 134 out of its 18,400 customers. The unauthorized intruder gained access to Okta's systems from September 28 to October 17, 2023, and obtained HAR files containing session tokens that could be used for session hijacking attacks. The breach impacted five customers, including 1Password, BeyondTrust, and Cloudflare. Investigation revealed that the breach occurred due to the abuse of a service account stored in Okta's system, which had privileges to view and update customer support cases. The username and password of the service account were saved to an employee's personal Google account, potentially exposing the credentials. Okta has taken steps to mitigate the breach, including revoking the compromised session tokens and disabling the service account.

businessdata-breach-cyber-attackcompromised-credentialscustomer-supportdata-breachdata-breach-cyber-attackoktasession-hijacking

Okta's Support System Breach Exposes Customer Data and Causes Stock Plunge

Originally Published 2 years ago — by The Hacker News

Featured image for Okta's Support System Breach Exposes Customer Data and Causes Stock Plunge
Source: The Hacker News

Okta, an identity services provider, disclosed a security incident where threat actors used stolen credentials to access its support case management system, allowing them to view files uploaded by certain Okta customers. The company emphasized that its production Okta service was not impacted, but warned that the support system breach exposed sensitive data, including session tokens. Okta has worked with affected customers to revoke session tokens and prevent abuse. BeyondTrust and Cloudflare confirmed they were targeted in the attack, with Cloudflare stating that the threat actor compromised two employee accounts within the Okta platform. Okta has faced multiple security incidents in recent years due to its high-value target status.

businessdata-breach-cyber-attackcustomer-datadata-breach-cyber-attackidentity-managementoktasupport-system-breachthreat-actors