Skip to main content

Okta Breach

dips
Forum|alt.badge.img+7
  • dips
  • Veeam Legend
  • 808 comments

Some late breaking news. Okta suffered a breach to their Support Case Management System which potentially resulted in HTTP Archive Files being accessed.

More here: https://sec.okta.com/harfiles & 

https://krebsonsecurity.com/2023/10/hackers-stole-access-tokens-from-oktas-support-unit/

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader

7 comments

Chris.Childerhose
Forum|alt.badge.img+21
  • Chris.Childerhose
  • Veeam Legend, Veeam Vanguard
  • 8512 comments
  • October 20, 2023

Wow!  An identity management company hacked which is definitely not good.

Chris Childerhose - VMCA2024 | VMCE2023 | VMCE-SP2024 | Veeam Vanguard 8* | Veeam Legend 5* | vExpert 6* | VCAP-DCV/VCP-DCV | Object First Ace | Cisco Champion | Twitter: @cchilderhose | Blog Site – https://just-virtualization.tech
BertrandFR
dips
Link State
6 people like this
  • BertrandFR
    BertrandFR
  • dips
    dips
  • Link State
    Link State
  • vAdmin
    vAdmin
  • Iams3le
    Iams3le
  • CarySun
    CarySun
CarySun
Forum|alt.badge.img+7
  • CarySun
  • Veeam Vanguard
  • 200 comments
  • October 20, 2023

Another hacker wins story……

What we can trust????🤔

Veeam Vanguard | VMCE 2024 | Microsoft MVP | Cisco Insider Champion | CISCO CCIE #4531 | Web Site - carysun.com | Blog Site - gooddealmart.com | Blog Site - checkyourlogs.net | X: @SifuSun | LinkedIn: https://www.linkedin.com/in/sifusun/ | Amazon Author: https://Amazon.com/author/carysun
Chris.Childerhose
dips
Link State
5 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • dips
    dips
  • Link State
    Link State
  • vAdmin
    vAdmin
  • Iams3le
    Iams3le
dips
Forum|alt.badge.img+7
  • dips
  • Author
  • Veeam Legend
  • 808 comments
  • October 20, 2023
CarySun wrote:

Another hacker wins story……

What we can trust????🤔

That’s a good question. Is not been a great week, first with Cisco’s vulnerability and now this. 

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader
Chris.Childerhose
Link State
vAdmin
4 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • Link State
    Link State
  • vAdmin
    vAdmin
  • CarySun
    CarySun
CarySun
Forum|alt.badge.img+7
  • CarySun
  • Veeam Vanguard
  • 200 comments
  • October 20, 2023

Yep. Over 40,000 Cisco IOS XE devices were infected with a backdoor using zero-day. What’s the week??? So sad.

Anyway, have a good weekend everyone!!

 

Veeam Vanguard | VMCE 2024 | Microsoft MVP | Cisco Insider Champion | CISCO CCIE #4531 | Web Site - carysun.com | Blog Site - gooddealmart.com | Blog Site - checkyourlogs.net | X: @SifuSun | LinkedIn: https://www.linkedin.com/in/sifusun/ | Amazon Author: https://Amazon.com/author/carysun
Chris.Childerhose
dips
Link State
4 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • dips
    dips
  • Link State
    Link State
  • Iams3le
    Iams3le
dips
Forum|alt.badge.img+7
  • dips
  • Author
  • Veeam Legend
  • 808 comments
  • October 20, 2023

Thanks @CarySun  you too!

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader
Chris.Childerhose
Link State
Iams3le
4 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • Link State
    Link State
  • Iams3le
    Iams3le
  • CarySun
    CarySun
dloseke
Forum|alt.badge.img+8
  • dloseke
  • Veeam Vanguard
  • 1447 comments
  • October 23, 2023

Wait….didn’t they have some sort of breach or vulnerability reported a year ago too?

Edit:  it was nearly 2 years ago, but I don’t recall all the details.  

 

https://www.reliaquest.com/blog/the-okta-breach-what-we-know-so-far/

 

Derek M. Loseke, Senior Systems Engineer | Veeam Legend 2022-2024 | VMSP/VMTSP | VCP6-DCV | VSP/VTSP | CCNA | https://technotesanddadjokes.com | @dloseke
Chris.Childerhose
dips
2 people like this
  • Chris.Childerhose
    Chris.Childerhose
  • dips
    dips
dips
Forum|alt.badge.img+7
  • dips
  • Author
  • Veeam Legend
  • 808 comments
  • October 23, 2023
dloseke wrote:

Wait….didn’t they have some sort of breach or vulnerability reported a year ago too?

Edit:  it was nearly 2 years ago, but I don’t recall all the details.  

 

https://www.reliaquest.com/blog/the-okta-breach-what-we-know-so-far/

 

Yep, they were breached by Lapsus$

https://www.okta.com/blog/2022/03/updated-okta-statement-on-lapsus/

Dipen N. K. | IT Security Specialist | Veeam Legend 2022 - 2025 | Cyber Security Space VUG Leader
Chris.Childerhose
1 person likes this
  • Chris.Childerhose
    Chris.Childerhose

Comment


Terms & Conditions