Home ยป Unearthing Okta’s Back-End Breach: 1Password Discovers 3-Week-Long Exploitation of Employee System

Unearthing Okta’s Back-End Breach: 1Password Discovers 3-Week-Long Exploitation of Employee System

TLDR: Okta, a cybersecurity company, recently experienced a security breach where hackers attempted to access system administrators’ accounts. 1Password and BeyondTrust also reported similar incidents. Okta confirmed that the hackers used accounts that had requested support from Okta and provided HAR files for investigation. However, 1Password discovered unauthorized access as early as September 29th, with the intention to open additional user accounts on Google for future use. The team immediately terminated all sessions and logged out of external systems. On October 2nd, the hackers attempted to log back in through Google, but their configuration prevented further damage. BeyondTrust also reported a breach, with hackers gaining access through data sent to Okta on October 2nd. Despite Okta’s delayed responses and incomplete log reports, the company finally acknowledged the breach on October 20th. Okta mentioned that approximately 1% of their customers were affected, most likely large organizations. Further investigations from other organizations may follow.

Source: 1Password, Cloudflare, BeyondTrust

More Reading

Post navigation

Leave a Comment

Leave a Reply

Your email address will not be published. Required fields are marked *

Midnight Blizzard Group Identified by Microsoft Continues Relentless Data Breaches, Latest Gain Access to Some Source Code Segments.

Revolutionizing the IoT Landscape: BlackBerry Transforms into a Cutting-Edge Enterprise, Paving its Path Away from Core Cybersecurity Operations

Unveiling the Enigmatic Code Pathways: Engineer Unearths Hidden Vulnerability in Project xz, Urges Media Against Disclosure Due to SSH CPU Consumption Vulnerability