More Okta Customers Hacked

  /     /     /  
Publicated : 23/11/2024   Category : security


More Okta Customers Hacked


Attackers compromised customer support files containing cookies and session tokens, which could result in malicious impersonation of valid Okta users.



Okta, an identity and access management services provider, disclosed that its customer support case management system was recently compromised, exposing sensitive customer data including cookies and session tokens. Attackers could potentially use the information to impersonate valid users contacting support.
The customer support case management system is separate from the Okta service itself and the incident only impacted customers with recent support cases, the companys Chief Security Officer David Bradbury
stressed in a blog post
on Oct. 20. Impacted customers have been notified, he said.
Okta has worked with impacted customers to investigate, and has taken measures to protect our customers, including the revocation of embedded session tokens, Bradbury added.
In its blog post, Okta listed IP addresses and user-agents that security teams can use in their threat hunting efforts.
The announcement comes after Okta was identified as the initial attack vector in recent twin
cyberattacks on MGM Resorts and Caesars Entertainment
.

Last News

▸ DHS-funded SWAMP scans code for bugs. ◂
Discovered: 23/12/2024
Category: security

▸ Debunking Machine Learning in Security. ◂
Discovered: 23/12/2024
Category: security

▸ Researchers create BlackForest to gather, link threat data. ◂
Discovered: 23/12/2024
Category: security


Cyber Security Categories
Google Dorks Database
Exploits Vulnerability
Exploit Shellcodes

CVE List
Tools/Apps
News/Aarticles

Phishing Database
Deepfake Detection
Trends/Statistics & Live Infos



Tags:
More Okta Customers Hacked