Cyber Security
Major Security Breach At Okta Exposes Every Customer’s Information!
By TechDogs Bureau
Updated on Fri, Dec 1, 2023
That might read like a scene from a thriller based on a cyber-attack - but it unfortunately is not!
Okta, the US-based cybersecurity software firm, had their support system compromised and the hackers raided the treasure trove of customer data. Okta initially thought it was a mere scratch but, whoops, it turned out to be a serious breach! This news hit the markets hard, sending Okta's shares on a rollercoaster ride—down 7% in pre-market trading!
However, Okta bounced back like a champ with earnings that smashed expectations.
Is there any report on how did this happen?
-
So, according to the reports, the hack involved sneaking into Okta's support system and snatching customer-uploaded session tokens. Initially, Okta thought only a tiny fraction of their customers were affected. Later, it was revealed that ALL customers were in the hacker’s crosshairs. Yup, 18,000 of them, including customers from names like T-Mobile, Cloudflare and even some employees at OpenAI!
-
The data the hackers grabbed seems a bit like a wild goose chase—mostly names and emails but in some cases, they might have stumbled upon phone numbers, usernames and even peeks at employee roles.
-
Okta’s Chief Security Officer David Bradbury assures everyone that there's no evidence of immediate danger. According to Bradbury, “While we do not have direct knowledge or evidence that this information is being actively exploited, there is a possibility that the threat actor may use this information to target Okta customers via phishing or social engineering attacks.”
-
Wait, there’s more! The hackers got their mitts on more data than information on certified users and contacts from Okta's Customer Identity Cloud. Even some Okta employees were caught in the mix, although they're keeping mum about how many of their 6,000 staff got pulled into this cyber whirlwind.
Good news, though! Government customers dodged this digital bullet and Okta's other support system, Auth0, came out unscathed.
So, what's Okta’s advice on this? Well, Okta suggests buckling up with multi-factor authentication and some seriously clever, hack-proof authenticators—like those physical security keys that seem straight out of a spy movie!
The villains behind this attack are still a mystery. Apparently, this isn't Okta's first rodeo with security woes. According to a statement, hackers got a whiff of their source code last year and even showed off screenshots of sneaking into Okta's inner sanctum through a customer service partner.
Are you looking forward to seeing how Okta would tighten its digital seatbelt to combat such breaches? Should businesses with customer data be held to a higher security standard than other industry players?
Feel free to drop your thoughts in the comments section below!
First published on Fri, Dec 1, 2023
Enjoyed what you've read so far? Great news - there's more to explore!
Stay up to date with the latest news, a vast collection of tech articles including introductory guides, product reviews, trends and more, thought-provoking interviews, hottest AI blogs and entertaining tech memes.
Plus, get access to branded insights such as informative white papers, intriguing case studies, in-depth reports, enlightening videos and exciting events and webinars from industry-leading global brands.
Dive into TechDogs' treasure trove today and Know Your World of technology!
Disclaimer - Reference to any specific product, software or entity does not constitute an endorsement or recommendation by TechDogs nor should any data or content published be relied upon. The views expressed by TechDogs' members and guests are their own and their appearance on our site does not imply an endorsement of them or any entity they represent. Views and opinions expressed by TechDogs' Authors are those of the Authors and do not necessarily reflect the view of TechDogs or any of its officials. All information / content found on TechDogs' site may not necessarily be reviewed by individuals with the expertise to validate its completeness, accuracy and reliability.
Trending TD NewsDesk
Court Backs School's Punishment For Using AI But AI Research Keeps Unveiling New Insights
By TechDogs Bureau
Business Spend On GenAI Jumps 500% But Nearly Half Prefer Open-Source
By TechDogs Bureau
ZEEL And Telegram Crack Down On Piracy While Young Users Embrace It
By TechDogs Bureau
750,000 French Patients’ Data Leaked While Advertisers Sell Data Of US Military Workers
By TechDogs Bureau
Australia Introduces Bill To Ban Social Media For Under-16s
By TechDogs Bureau
Join Our Newsletter
Get weekly news, engaging articles, and career tips-all free!
By subscribing to our newsletter, you're cool with our terms and conditions and agree to our Privacy Policy.
Join The Discussion