Okta

May relate to third-party customer support engineer targeted in January. Okta, whose authentication services are used by companies to provide access to their ...

Okta Inc, whose authentication services are used by companies including Fedex Corp and Moody's Corp to provide access...

Ransomware gang Lapsus$ strikes again, posting screenshots to its Telegram channel Tuesday of what it alleges is data from customers of identity securit...

Nvidia said the threat actors obtained the company’s network credentials and through deception, obtained two-factor authentication capability and access to Nvidia’s network. Shortly after publication, Lapsus$ removed the post and published the message “Deleted for now will repost later.” Okta is the world’s largest pure-play identity security provider, with sales in the fiscal year ended Jan. 31, 2022, surging to US$1.3 billion, up 56 percent from US$835.4 million a year earlier. Earlier this month, Lapsus$ said it stole Samsung’s source code and biometric unlocking algorithms for its Galaxy devices, compromising sensitive hardware controls. Okta co-founder and CEO Todd McKinnon said the screenshots shared by Lapsus$ are believed to be connected to an incident from late January, with no evidence on ongoing malicious activity beyond what happened then. Independent security researcher Bill Demirkapi told the news agency that he believes the screenshots are credible.

Authentication firm Okta's statements on the Lapsus$ breach leave key questions unanswered.

The latter is the main mechanism Lapsus$ hackers would likely have abused to take over Okta logins at target organizations and infiltrate. The timing coincides with Lapsus$'s decision to release screenshots, via Telegram, that claim to detail its Okta administrative account access from late January. On Tuesday evening, about eight hours after posting Bradbury's statement, Okta updated the notice with some expanded information.

Hundreds of large companies, such as FedEx Corp, T-Mobile US Inc, Moody's Corp and Coinbase Global Inc, use Okta's services.

In a 2019 interview with CNBC, Okta’s CEO, Todd McKinnon, said the company had more than 100 million registered users. Okta sells identity services, such as Single Sign-On and Multi-factor Authentication used to log in to online applications and websites. Okta said the breach could be connected to an earlier incident in January. Here are some facts about the company: