Lapsus$ Adds “Okta” The Enterprise Authentication Provider To Their List
Again, in the cyber security field, a familiar name is on the rise as mention of a potential breach of security at Okta (a firm designed as an authentication provider for large enterprise companies like Cloudflare inc) surfaces in the early hours of Tuesday, March 22, 2022. Cloudflare’s CEO Matthew Prince said on Twitter, that Cloudflare was aware their provider, Okta, may have been breached. Screenshots have been shared on social media of the occurrence.
“In late January 2022, Okta detected an attempt to compromise the account of a third-party customer support engineer working for one of our sub processors. The matter was investigated and contained by the sub processor.” Todd Mckinnon, Executive Officer at Okta, said in a tweet “We believe the screenshots shared online are connected to this January event. Based on our investigation to date, there is no evidence of ongoing malicious activity beyond the activity detected in January”
Lapsus$ also said amongst these posts “They did not illegally access or cause damage to any, one server or database belonging to Okta, rather, they were targeting the Okta customers.
References:
Background vector created by rawpixel.com