February 4, 2024 at 10:42AM A suspected state-sponsored threat actor gained unauthorized access to internal Cloudflare systems using credentials stolen in the Okta hack, posing a significant security risk. This breach highlights the escalating challenges posed by nation-state cyber threats. Full details are available on SecurityWeek. Based on the meeting notes, it seems that a … Read more
November 29, 2023 at 10:54AM Hackers accessed Okta’s support system and obtained names and email addresses of all customer support users, broadening the scope of the October breach. Initially thought to affect only 134 customers, the intrusion actually compromised data from all Okta WIC and CIS customers, except those in high-security government environments. No sensitive … Read more
November 4, 2023 at 12:30PM Okta attributes the recent hack of its support system to an employee who logged into a personal Google account on a company-managed laptop. The breach resulted in the theft of data from multiple Okta customers. The employee’s personal Google account credentials, including session tokens, were compromised, allowing the threat actor … Read more