Home ยป Unearthing Okta’s Back-End Breach: 1Password Discovers 3-Week-Long Exploitation of Employee System

Unearthing Okta’s Back-End Breach: 1Password Discovers 3-Week-Long Exploitation of Employee System

TLDR: Okta, a cybersecurity company, recently experienced a security breach where hackers attempted to access system administrators’ accounts. 1Password and BeyondTrust also reported similar incidents. Okta confirmed that the hackers used accounts that had requested support from Okta and provided HAR files for investigation. However, 1Password discovered unauthorized access as early as September 29th, with the intention to open additional user accounts on Google for future use. The team immediately terminated all sessions and logged out of external systems. On October 2nd, the hackers attempted to log back in through Google, but their configuration prevented further damage. BeyondTrust also reported a breach, with hackers gaining access through data sent to Okta on October 2nd. Despite Okta’s delayed responses and incomplete log reports, the company finally acknowledged the breach on October 20th. Okta mentioned that approximately 1% of their customers were affected, most likely large organizations. Further investigations from other organizations may follow.

Source: 1Password, Cloudflare, BeyondTrust

More Reading

Post navigation

Leave a Comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Microsoft Prepares Security Seminar for Windows – Main Focus on CrowdStrike Case Study

Collaborative Efforts of Meta, DE, and National Police Bureau Reinforce Strategies to Counter Online Deception-Related Perils

TikTok Discloses Fixes and Closes Vulnerability Allowing Accounts to be Hacked via Malware-infected DMs.