Okta Hack puts thousands of businesses on high alert

Okta, an authentication company used by thousands of organizations worldwide, says it is investigating news of a potential breach, Reuters The report. The release comes as hacking group Lapsus posted $ screenshots to its telegram channel, claiming to be from Okta’s internal systems, including one showing the Okta Slack channel, and another with a cloudflare interface.

Any hack by Okta could have a huge impact on companies, universities and government agencies that rely on Okta to authenticate users access to internal systems.

Writing in his telegram channel, Lapsus $ claims that he had “superuser / admin” access to octa systems for two months, but said his focus was “only on octa clients”. The Wall Street Journal noted that in a recent issue Okta said it had over 15,000 customers around the world. It lists the likes of Peloton, Sonos, T-Mobile, and the FCC as customers on its website.

In a statement sent to De Verge, Okta spokesman Chris Hollis downplayed the incident, saying Okta found no evidence of a further attack. “At the end of January 2022, Okta discovered an attempt to compromise the account of a third party client support engineer working for one of our subprocessors. The matter was investigated and contained by the subprocessor. Hollis said.” We believe the screenshots, shared online, associated with this January event. “

“Based on our investigation to date, there is no evidence of further malicious activity beyond the activity detected in January,” Hollis continued. However, writes in her telegram channel, Lapsus $ proposed that it had access for a few months.

Lapsus $ is a hacking group that has claimed responsibility for a number of high-profile incidents involving Nvidia, Samsung, Microsoftand Ubisoft, in some cases stealing hundreds of gigabytes of confidential data.