Okta data breach dilemma dwarfs earlier estimates All customer support users told their info was accessed after analysis oversight Security29 Nov 2023 | 14
Okta October breach affected 134 orgs, biz admits Infosec in brief Plus: CVSS 4.0 is here, this week's critical vulns, and 'incident' hit loan broker promises no late fees. Generous Security06 Nov 2023 | 6
Okta tells 5,000 of its own staff that their data was accessed in third-party breach Updated The hits keep on coming for troubled ID management biz Cyber-crime02 Nov 2023 | 28
1Password confirms attacker tried to pull list of admin users after Okta intrusion Says logins are safe, as high-profile customers complain they knew about the breach before Okta Cyber-crime24 Oct 2023 | 9
More Okta customers trapped in Scattered Spider's web Oktapus phishing campaign criminals are back in action Cyber-crime01 Sep 2023 |
Crooks copy source code from Okta’s GitHub repository The hack wraps up a year of bad security incidents for identity Security23 Dec 2022 | 13
Multi-factor auth fatigue is real – and it's why you may be in the headlines next Analysis Overwhelmed by waves of push notifications, worn-down users inadvertently let the bad guys in Security03 Nov 2022 | 88
Okta says Lapsus$ incident was actually a brilliant zero trust demonstration Once former supplier Sitel coughed up its logs, it became apparent the attacker was hemmed in Security22 Jun 2022 | 4
Lapsus$ back? Researchers claim extortion gang attacked software consultancy Globant Updated Meanwhile, Okta squirms as further details of slow hack response emerge Security30 Mar 2022 | 6
Okta acknowledges 'mistake' in handling of Lapsus$ attack Changes story again to say customers weren't in danger, admits it waited for incident report instead of asking tough questions Security28 Mar 2022 | 11
Okta now says: Lapsus$ may in fact have accessed customer info Plus: Microsoft reveals gang pulled off limited source code heist after single account compromised Security23 Mar 2022 | 18
Authentication oufit Okta investigating Lapsus$ breach report Updated Cloudflare takes no chances, hits the identity reset button Security22 Mar 2022 | 13
For those with zero trust in zero-trust networks, this industry alliance may help Will someone give the buzzwords a buzz cut? Networks11 Mar 2022 | 5
Shopping for execs: ID management biz Okta poaches Google's veep of engineering to run product dev activities Head techie for Chocolate Factory's search ad biz departs Mountain View Security03 Aug 2021 | 6
We're almost into the third decade of the 21st century and we're still grading security bugs out of 10 like kids. Why? Disclosure Infosec veteran Marc Rogers on why we need a better system to rate vulnerabilities Security07 Nov 2019 | 48