Lapsus$ Breached Okta Using Spreadsheet Of Passwords

Lapsus$ was able to infiltrate Okta’s internal system after accessing a spreadsheet of passwords on compromised Sitel’s internal network.

Sitel discovered the security incident in its VPN gateways on a legacy network belonging to Sykes, a customer service company working for Okta and acquired by Sitel in 2021.

The attackers used remote access services and publicly accessible hacking tools to compromise and navigate through Sitel’s network.

After gaining deeper visibility into the network, the hackers were able to gain access to a spreadsheet on Sitel’s internal network called “DomAdmins-LastPass.xlsx.”

The spreadsheet file contained passwords for domain administrator accounts that were exported from a Sitel employee’s LastPass password manager.

The hackers created a new Sykes user account that gives them broad access to the organization and helps keep them within the system in case they were discovered and locked out.

For more information, read the original story in TechCrunch.

Lapsus$ Breached Okta Using Spreadsheet Of Passwords

Top Stories

SoftBank sells remaining Nvidia stake to fund $22.5B OpenAI commitment

What a year this has been.

Top 10 reflections on information technology developments in 2025

Spotify says it has identified account behind mass scraping claimed by pirate group

Waymo suspends San Francisco robotaxi service after power outage leaves cars blocking roads

Facial recognition becomes mandatory for new mobile accounts in South Korea

Related Articles

Facial recognition becomes mandatory for new mobile accounts in South Korea

Ex-BlackBerry CEO urges Canada to fortify digital sovereignty amid new U.S. National Security Strategy

Travelers may soon face mandatory social media screening at the Canada-U.S. border

House of Commons hit by cyberattack tied to Microsoft flaw

TND Newsdesk

TND Newsdesk

Jim Love

Follow Us

Popular categories

Tech News Delivered