Lapsus$ Breach Significantly Smaller Than Expected, Okta

April 21, 2022

Okta said the Lapsus breach that happened in January, was significantly smaller than expected. This was confirmed after a series of investigations.

According to Okta’s Chief Security Officer David Bradbury, the final forensic report showed that the attacker only accessed two active customers after the attacker had gained control of a single workstation used by an engineer working for Sitel.

Bradbury explained that “the threat actor was unable to successfully perform any configuration changes, MFA or password resets or customer support ‘impersonation’ events.”

Okta has ended its relationship with Sitel. Okta now directly manages all third-party devices with access to its customer support tools.

Bradbury said the company will instruct its service providers to meet the new security requirements, including the introduction of the Zero Trust security architecture and authentication via Okta’s IDAM solution for all workplace apps.

The sources for this piece include an article in BleepingComputer.

Top Stories

Related Articles

June 26, 2026 Ford Motor Co. turned to veteran engineers to tackle persistent vehicle quality problems after finding that artificial more...

June 26, 2026 Meta's chief technology officer says employee morale has fallen to one of the lowest levels in the more...

June 26, 2026 Memory chip maker Micron says it has signed 16 long-term strategic customer agreements that include price floors more...

June 26, 2026 IBM says it has developed the world's first functional sub-1 nanometre computer chip, marking what the company more...

Jim Love

Jim is an author and podcast host with over 40 years in technology.

Share:
Facebook
Twitter
LinkedIn