this post was submitted on 29 Nov 2023

150 points (96.9% liked)

Technology

58096 readers

3148 users here now

This is a most excellent place for technology news and articles.

Our Rules

Follow the lemmy.world rules.
Only tech related content.
Be excellent to each another!
Mod approved content bots can post up to 10 articles per day.
Threads asking for personal tech support may be deleted.
Politics threads may be removed.
No memes allowed as posts, OK to post as comments.
Only approved bots from the list below, to ask if your bot can be added please contact us.
Check for duplicates before posting, duplicates may be removed

Approved Bots

founded 1 year ago

MODERATORS

150

Okta Says Hackers Stole Data for All Customer Support Users (www.bloomberg.com)

submitted 9 months ago by return2ozma@lemmy.world to c/technology@lemmy.world

13 comments fedilink hide all child comments

all 14 comments

sorted by: hot top controversial new old

[–] BeigeAgenda@lemmy.ca 39 points 9 months ago (2 children)

I looked it up: Okta is a corporate identity management service, they handle stuff like SSO, logins, AD, etc...

So I see why they are targeted.

[–] Kbin_space_program@kbin.social 12 points 9 months ago (2 children)

Yeah, they handle SSO between platforms. Not the registrations though.

They just handle the SSO part, if you have three systems connected, you need to sync the users between them on your own, then they can log them in to all three .

[–] key@lemmy.keychat.org 1 points 9 months ago (1 children)

That's not completely true. That's often the ideal way to use them (especially with integrating pre-existing applications). But they do offer (crappy) user stores in their auth0 product which can handle registration including UI.

[–] Kbin_space_program@kbin.social 1 points 9 months ago

Interesting, I guess they don't offer that for all platforms.

[–] Onaltau@lemm.ee 1 points 9 months ago (2 children)

I understood some of those words!

[–] TheBat@lemmy.world 7 points 9 months ago

They build digital corridors so at your workplace you can use multiple different applications without having to login every time.

[–] ripcord@kbin.social 2 points 9 months ago

Hopefully all of them except maybe SSO

[–] RizzRustbolt@lemmy.world 7 points 9 months ago

And they work with federal contractors. So double the reason to target them.

[–] atx_aquarian@lemmy.world 16 points 9 months ago* (last edited 9 months ago) (1 children)

including names and email addresses

By now, that's been stolen from so many companies that I wonder how much new info is really being compromised compared to what's already out there. Speaking anecdotally, my spam already comes personalized. Like, even the obviously-not-from-a-partner phishy-looking stuff.

[–] darklypure@kbin.social 9 points 9 months ago

True, but I think the point here is context. What the hackers get here is the context that X recipient gets email on X address from Okta so I'd more likely than not to respond.

[–] Reverendender@sh.itjust.works 14 points 9 months ago

In my experience, Customer Support Users often have access to fuck shit up pretty good.

[+] NumbersCanBeFun@kbin.social 8 points 9 months ago (1 children)

[deleted]

[–] redline23@lemmy.world 3 points 9 months ago* (last edited 9 months ago)

“While we have not seen direct evidence that the threat actor is using this list to launch phishing attacks against support system users,” the company said to customers, “phishing attacks are a constant threat.” Okta, which manages user authentication services for thousands of corporate clients, didn’t immediately provide comment.

Okta’s shares plunged last month after the San Francisco-based company disclosed that hackers had used a stolen credential to access its support system. At the time, a company spokesman estimated that about 184 clients, representing roughly 1% of the Okta’s customers, were affected. It wasn’t the first time Okta had been breached. The company disclosed last year that a hacking group had broken into its system after the gang posted screenshots that appeared to show access to Okta accounts.

The company said in its letter to customers that a recent audit found more data was stolen than it initially thought, prompting it to revise its findings. The firm also discovered that some Okta employee information was included in stolen reports, according to the customer notice reviewed by Bloomberg.

The customer report contained fields for customer user names, company names and mobile phone numbers, Okta said, while noting that the majority of the fields were blank and didn’t include credentials or sensitive personal data. For more than 99% of customers listed in the report, Okta said, the only contact information stolen were full names and email addresses. Read More: Okta Falls on News That Hackers Viewed Some Customer Files Many of the affected users of the customer support system are Okta administrators, according to the company’s notice. Okta is scheduled to report earnings on Wednesday. The company said in its notice to customers that it would publicly disclose the new details on the same day.

Here is the rest of that article

[–] UltraMagnus0001@lemmy.world 6 points 9 months ago

Chrysler login for scanning their vehicles uses okta