okta – PossibleThreat Articles

Fla. Man Charged in SIM-Swapping Spree is Key Suspect in Hacker Groups Oktapus, Scattered Spider

January 30, 2024 0 Comments 0ktapus, A Little Sunshine, Breadcrumbs, elijah, grails, group-ib, king bob, mailchimp, Ne'er-Do-Well News, noah michael urban, okta, plex, scattered spider, signal, SIM swapping, sosa, twilio, Web Fraud 2.0

Credit to Author: BrianKrebs| Date: Tue, 30 Jan 2024 19:07:18 +0000

On Jan. 9, 2024, U.S. authorities arrested a 19-year-old Florida man charged with wire fraud, aggravated identity theft, and conspiring with others to use SIM-swapping to steal cryptocurrency. Sources close to the investigation tell KrebsOnSecurity the accused was a key member of a criminal hacking group blamed for a string of cyber intrusions at major U.S. technology companies during the summer of 2022.

MalwareBytes Security

Okta breach happened after employee logged into personal Google account

November 7, 2023 0 Comments Business, CloudFlare, Google, news, okta, private account, service account

Okta has concluded that the root cause of its breach was an employee storing company credentials in a private Google account.

MalwareBytes Security

1Password reports security incident after breach at Okta

October 30, 2023 0 Comments 1password, har file, news, okta, session

Password manager 1Password says it’s been affected by a breach at Okta, but it reports no user data has been stolen. In a security…

MalwareBytes Security

1Password reports security incident after breach at Okta

October 30, 2023 0 Comments 1password, har file, news, okta, session

Categories: News

Tags: 1Password

Tags: Okta

Tags: HAR file

Tags: session

Password manager 1Password says it’s been affected by a breach at Okta, but it reports no user data has been stolen.

Independent Krebs Security

Hackers Stole Access Tokens from Okta’s Support Unit

October 23, 2023 0 Comments A Little Sunshine, beyondtrust, charlotte wylie, Data Breaches, marc maiffret, okta, okta breach

Credit to Author: BrianKrebs| Date: Fri, 20 Oct 2023 18:39:23 +0000

Okta, a company that provides identity tools like multi-factor authentication and single sign-on to thousands of businesses, has suffered a security breach involving a compromise of its customer support unit, KrebsOnSecurity has learned. Okta says the incident affected a “very small number” of customers, however it appears the hackers responsible had access to Okta’s support platform for at least two weeks before the company fully contained the intrusion.

MalwareBytes Security

Okta breached last month, no customers compromised

January 3, 2023 0 Comments auth0, github, news, okta

Categories: News

Tags: Okta

Tags: GitHub

Tags: Auth0

Okta’s code repository on GitHub has been accessed by an unauthorized third party, but there’s no reason for customers to worry

(Read more…)

The post Okta breached last month, no customers compromised appeared first on Malwarebytes Labs.

MalwareBytes Security

Twilio data breach turns out to be more elaborate than suspected

August 29, 2022 0 Comments 2fa, Authy, CloudFlare, klaviyo, mailchimp, news, okta, oktapus, otp, scatter swine, signal, twilio

Categories: News

Tags: twilio

Tags: okta

Tags: Authy

Tags: Signal

Tags: Cloudflare

Tags: MailChimp

Tags: Klaviyo

Tags: scatter swine

Tags: oktapus

Tags: 2fa

Tags: otp

Even if you don’t know a thing about Twilio, you may have been affected by their data breach.

MalwareBytes Security

Twilio breached after social engineering attack on employees

August 9, 2022 0 Comments LinkedIn, news, okta, Social engineering, sso, text messages, twilio

Categories: News

Categories: Social engineering

Tags: Twilio

Tags: text messages

Tags: sso

Tags: okta

Tags: linkedin

Twilio says it has fallen victim to a breach after an attacker sent text messages to a large number of employees.

Independent Krebs Security

The Original APT: Advanced Persistent Teenagers

April 6, 2022 0 Comments A Little Sunshine, advanced persistent teenagers, amit yoran, APT, cisa, FBI, lapsus, Microsoft, Ne'er-Do-Well News, NVIDIA, okta, Samsung, tenable, The Coming Storm, twitter hack, vishing, voice phishing, wired

Credit to Author: BrianKrebs| Date: Wed, 06 Apr 2022 17:55:38 +0000

Many organizations are already struggling to combat cybersecurity threats from ransomware purveyors and state-sponsored hacking groups, both of which tend to take days or weeks to pivot from an opportunistic malware infection to a full blown data breach. But few organizations have a playbook for responding to the kinds of virtual “smash and grab” attacks we’ve seen recently from LAPSUS$, a juvenile data extortion group whose short-lived, low-tech and remarkably effective tactics are putting some of the world’s biggest corporations on edge.

MalwareBytes Security

Globant suffers network breach due to LAPSUS$ compromise

April 1, 2022 0 Comments Cybercrime, globant, lapsus, lg, Microsoft, NVIDIA, okta, Ransomware, ransomware gang, Samsung, teen hackers

Credit to Author: Jovi Umawing| Date: Fri, 01 Apr 2022 18:56:37 +0000

LAPSUS$ is a young group believed to be ran by teenagers. In their latest heist, they leaked data from Globant, a software firm.

The post Globant suffers network breach due to LAPSUS$ compromise appeared first on Malwarebytes Labs.

← Previous