Okta Authentication Firm Probes Report of Digital Breach

A hack at Okta could have major consequences because many other companies rely on it to manage access to their own networks and applications.

By Reuters | Updated: 22 March 2022 18:35 IST

Okta Authentication Firm Probes Report of Digital Breach

Photo Credit: Reuters

The screenshots were posted by a group of ransom-seeking hackers known as Lapsus$

Highlights

Okta is now investigating a report of a digital breach
The ransom seeking Lapsus$ hacker group is said to be behind the breach
A hack at Okta could have major consequences for several other companies

Authentication services provider Okta is investigating a report of a digital breach, the company said on Tuesday, after hackers posted screenshots showing what they claimed was its internal company environment.

A hack at Okta could have major consequences because thousands of other companies rely on the San Francisco-based firm to manage access to their own networks and applications.

The company was aware of the reports and was investigating, Okta official Chris Hollis said in a brief statement.

Meta Fined EUR 17 million for Data Breach by Ireland

"We will provide updates as more information becomes available," he added.

The screenshots were posted by a group of ransom-seeking hackers known as Lapsus$ on their Telegram channel late on Monday. In an accompanying message, the group said its focus was "ONLY on Okta customers."

Security experts told Reuters the screenshots appeared to be authentic.

Samsung Confirms Data Breach Includes Source Code for Galaxy Smartphones

"I definitely do believe it is credible," said independent security researcher Bill Demirkapi, citing pictures of what appeared to be Okta's internal tickets and its in-house chat on the Slack messaging app.

Dan Tentler, the founder of cybersecurity consultancy Phobos Group, said he too believed the breach was real and urged Okta customers to be "very vigilant right now."

In an email, Tentler added, "There are timestamps and dates visible in the screenshots indicating January 21st of this year, which suggests they may have had access for two months."

Sensitive Data of 6,50,000 Stolen in Washington State Database Hack

Asus India's Arnold Su joins this week's Orbital, the Gadgets 360 podcast, to talk about how the PC maker is planning to grow its presence in the country. Orbital is available on Spotify, Gaana, JioSaavn, Google Podcasts, Apple Podcasts, Amazon Music and wherever you get your podcasts.

Affiliate links may be automatically generated - see our ethics statement for details.

Comments

For the latest tech news and reviews, follow Gadgets 360 on X, Facebook, WhatsApp, Threads and Google News. For the latest videos on gadgets and tech, subscribe to our YouTube channel. If you want to know everything about top influencers, follow our in-house Who'sThat360 on Instagram and YouTube.