Symbol Credit: Ron Miller / TechCrunchIdentity and get right of entry to massive Okta mentioned a hacker broke into its buyer make stronger price ticket gadget and stole delicate information that can be utilized to wreck into the networks of Okta’s consumers.
Okta leader safety officer David Bradbury mentioned in a weblog put up Friday {that a} hacker used a stolen credential to get right of entry to the corporate’s make stronger case control gadget, which contained browser recording information uploaded through Okta consumers for troubleshooting.
Browser recording periods (or HAR information) are used for diagnosing issues all through a internet surfing consultation, and regularly come with web site cookies and consultation tokens, which if stolen can be utilized to impersonate an actual person account with no need their password or two-factor.
Bradbury mentioned “consumers who had been impacted through this had been notified.” It’s now not transparent how Okta’s make stronger case control gadget was once to start with compromised.
Okta supplies organizations and corporations with get right of entry to and id gear, reminiscent of “unmarried sign-on,” which permits staff get right of entry to to all of an organization’s sources at the community with one set of credentials. Okta has round 17,000 consumers and manages round 50 billion customers, the corporate mentioned in a March 2023 weblog put up.
Okta spokesperson Vitor De Souza informed TechCrunch that round 1% of consumers are suffering from this breach, however declined to supply a selected quantity.
Safety company BeyondTrust, which makes use of Okta, mentioned in its personal weblog put up that it notified Okta of a possible breach on October 2 after it detected an tried compromise to its community a little while after an administrator shared a browser recording consultation with an Okta make stronger agent.
BeyondTrust’s leader era officer Marc Maiffret mentioned the hacker used a consultation token from the uploaded browser recording consultation to create an administrator account on BeyondTrust’s community, which it instantly close down. Maiffret mentioned the incident “was once the results of Okta’s make stronger gadget being compromised which allowed an attacker to get right of entry to delicate information uploaded through their consumers.”
Safety journalist Brian Krebs first reported the scoop. Krebs reported that Okta contained the incident through October 17, mentioning the corporate’s deputy leader knowledge safety officer Charlotte Wylie.
That is the most recent incident at Okta, which in 2022 mentioned that hackers stole a few of its supply code. Previous in 2022, hackers posted screenshots appearing get right of entry to to the corporate’s inside community after hacking into an organization Okta used for customer support.
Okta’s inventory closed down 11% on Friday following information of the breach.
Learn extra on TechCrunch:
![](data:image/svg+xml;charset=utf-8,<svg height="697" width="1024" xmlns="http://www.w3.org/2000/svg" version="1.1"/>)
