{"id":21923,"date":"2022-04-21T10:19:52","date_gmt":"2022-04-21T14:19:52","guid":{"rendered":"https:\/\/www.technewsday.com\/?p=21923"},"modified":"2022-04-22T14:32:22","modified_gmt":"2022-04-22T18:32:22","slug":"lapsus-breach-significantly-smaller-than-expected-okta","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/lapsus-breach-significantly-smaller-than-expected-okta\/","title":{"rendered":"Lapsus$ Breach Significantly Smaller Than Expected, Okta"},"content":{"rendered":"<p id=\"arIndex_0\" data-ar-index=\"0\">Okta said the Lapsus breach that happened in January, was significantly smaller than expected. This was confirmed after a series of investigations.<\/p>\n<p id=\"arIndex_1\" data-ar-index=\"1\">According to Okta&#8217;s Chief Security Officer David Bradbury, the final forensic report showed that the attacker only accessed two active customers after the attacker had gained control of a single workstation used by an engineer working for Sitel.<\/p>\n<p id=\"arIndex_2\" data-ar-index=\"2\">Bradbury explained that &#8220;the threat actor was unable to successfully perform any configuration changes, MFA or password resets or customer support &#8216;impersonation&#8217; events.&#8221;<\/p>\n<p id=\"arIndex_3\" data-ar-index=\"3\">Okta has ended its relationship with Sitel. Okta now directly manages all third-party devices with access to its customer support tools.<\/p>\n<p id=\"arIndex_4\" data-ar-index=\"4\">Bradbury said the company will instruct its service providers to meet the new security requirements, including the introduction of the Zero Trust security architecture and authentication via Okta&#8217;s IDAM solution for all workplace apps.<\/p>\n<p id=\"arIndex_5\" data-ar-index=\"5\">The sources for this piece include an article in <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/okta-lapsus-breach-lasted-only-25-minutes-hit-2-customers\/\" target=\"_blank\" rel=\"noopener\">BleepingComputer<\/a>.<\/p>\n","protected":false},"excerpt":{"rendered":"<p>Okta said the Lapsus breach that happened in January, was significantly smaller than expected.<\/p>\n","protected":false},"author":4,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[57,17,349],"tags":[388],"class_list":["post-21923","post","type-post","status-publish","format-standard","hentry","category-companies","category-data-analytics","category-development","tag-privacy-security"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/21923","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/4"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=21923"}],"version-history":[{"count":2,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/21923\/revisions"}],"predecessor-version":[{"id":21925,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/21923\/revisions\/21925"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=21923"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=21923"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=21923"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}