CySecurity News – Latest Information Security and Hacking Incidents
According to Okta, a quick inquiry into the posting of screenshots that appeared to depict a data breach discovered they are linked to a “contained” security incident that occurred in January 2022.
After the LAPSUS$ hacking group shared screenshots on Telegram which it claimed were taken after gaining access to “Okta.com Superuser/Admin and several other systems,” Okta, an enterprise identity, and access management business, initiated an investigation.
Lapsus$ is a hacking gang that has risen through the ranks by supposedly breaking into the networks of high-profile companies one by one to collect information and threaten to disclose it online until blackmail payments are made.
Sitel, Okta’s third-party provider of customer support services, was hacked by the Lapsus$ data extortion gang. “The Okta Security team was notified on January 20, 2022, a new factor had been added to a Sitel customer service engineer’s Okta account. It was a password which served as this factor” Okta explains. “Though this individual approach was unsuccessful, it reset the account and contacted Sitel,” says the company, which then hired a top forensic agency to conduct an investigation.
Okta is a publicly-traded corporation based in San Francisco with thousands of users, including several technology companies. FedEx, Moody’s, T-Mobile,
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
[…]
Content was cut in order to protect the source.Please visit the source for the rest of the article.
Read the original article: