On October 19, 2023, Okta, a major provider of identity and access management (IAM) solutions, disclosed that its customer support system had been hacked. The attackers were able to steal sensitive data, including session tokens and cookies, which could be used to impersonate valid users.
The attack was carried out by leveraging stolen credentials from a third-party customer support engineer. Once inside the support system, the attackers were able to view files uploaded by certain Okta customers, including support cases, screenshots, and other sensitive information.
Okta has stated that its main client platform was not affected by the breach, and that all customers have been notified of the incident. The company is also working with law enforcement and security experts to investigate the attack and prevent similar incidents from happening in the future.
Okta’s latest hack is a reminder that even the most well-known and trusted security companies are vulnerable to attack. It is important for all organizations to have a robust cybersecurity plan in place, and to regularly review and update their security controls.
Organizations should also be aware of the latest attack trends and techniques, and they should train their employees on how to identify and avoid social engineering attacks.
In addition, organizations should consider implementing additional security measures, such as multi-factor authentication (MFA) and privileged access management (PAM), to further protect their data and systems.