Lapsus$ Breach Significantly Smaller Than Expected, Okta

Okta said the Lapsus breach that happened in January, was significantly smaller than expected. This was confirmed after a series of investigations.

According to Okta’s Chief Security Officer David Bradbury, the final forensic report showed that the attacker only accessed two active customers after the attacker had gained control of a single workstation used by an engineer working for Sitel.

Bradbury explained that “the threat actor was unable to successfully perform any configuration changes, MFA or password resets or customer support ‘impersonation’ events.”

Okta has ended its relationship with Sitel. Okta now directly manages all third-party devices with access to its customer support tools.

Bradbury said the company will instruct its service providers to meet the new security requirements, including the introduction of the Zero Trust security architecture and authentication via Okta’s IDAM solution for all workplace apps.

The sources for this piece include an article in BleepingComputer.

Lapsus$ Breach Significantly Smaller Than Expected, Okta

Top Stories

UK surgeon performs remote robotic surgery on patient 1,500 miles away

Kalshi declines payouts on Iran leadership prediction market after Khamenei’s death

CIOCAN launches memorial award honouring Canadian IT leader Fawn Annan

Check Point launches Canada-only security region to meet rising data residency demands

OpenAI amends Pentagon deal after backlash over surveillance concerns

QuitGPT: OpenAI faces consumer backlash after DoD deal

Related Articles

UK surgeon performs remote robotic surgery on patient 1,500 miles away

Canada advances sovereign LEO satellite network to rival Starlink, strengthen connectivity

Oracle considering major layoffs as AI data centre costs climb

Judge rejects xAI bid to block California AI training data transparency law

TND Newsdesk

TND Newsdesk

Jim Love

Follow Us

Popular categories

Tech News Delivered