{"id":20961,"date":"2022-03-29T09:29:24","date_gmt":"2022-03-29T13:29:24","guid":{"rendered":"https:\/\/www.technewsday.com\/?p=20961"},"modified":"2022-03-30T10:22:34","modified_gmt":"2022-03-30T14:22:34","slug":"lapsus-breached-okta-using-spreadsheet-of-passwords","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/lapsus-breached-okta-using-spreadsheet-of-passwords\/","title":{"rendered":"Lapsus$ Breached Okta Using Spreadsheet Of Passwords"},"content":{"rendered":"<p data-ar-index=\"0\">Lapsus$ was able to infiltrate Okta&#8217;s internal system after accessing a spreadsheet of passwords on compromised Sitel&#8217;s internal network.<\/p>\n<p data-ar-index=\"1\">Sitel discovered the security incident in its VPN gateways on a legacy network belonging to Sykes, a customer service company working for Okta and acquired by Sitel in 2021.<\/p>\n<p data-ar-index=\"2\">The attackers used remote access services and publicly accessible hacking tools to compromise and navigate through Sitel&#8217;s network.<\/p>\n<p data-ar-index=\"3\">After gaining deeper visibility into the network, the hackers were able to gain access to a spreadsheet on Sitel&#8217;s internal network called &#8220;DomAdmins-LastPass.xlsx.&#8221;<\/p>\n<p data-ar-index=\"4\">The spreadsheet file contained passwords for domain administrator accounts that were exported from a Sitel employee&#8217;s LastPass password manager.<\/p>\n<p data-ar-index=\"5\">The hackers created a new Sykes user account that gives them broad access to the organization and helps keep them within the system in case they were discovered and locked out.<\/p>\n<p data-ar-index=\"6\">For more information, read the <a href=\"https:\/\/techcrunch.com\/2022\/03\/28\/lapsus-passwords-okta-breach\/?guccounter=1\" target=\"_blank\" rel=\"noopener\">original story<\/a> in TechCrunch.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Lapsus$ was able to infiltrate Okta&#8217;s internal system after accessing a spreadsheet of passwords on compromised Sitel&#8217;s internal network. Sitel discovered the security incident in its VPN gateways on a legacy network belonging to Sykes, a customer service company working for Okta and acquired by Sitel in 2021. The attackers used remote access services and [&hellip;]<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[421,58],"tags":[389,388,393],"class_list":["post-20961","post","type-post","status-publish","format-standard","hentry","category-governance","category-government-public-sector","tag-cyber-security-today","tag-privacy-security","tag-security-strategies"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/20961","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=20961"}],"version-history":[{"count":4,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/20961\/revisions"}],"predecessor-version":[{"id":20985,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/20961\/revisions\/20985"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=20961"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=20961"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=20961"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}