Security News > 2022 > March > LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta

LAPSUS$ Hackers Claim to Have Breached Microsoft and Authentication Firm Okta
2022-03-22 09:22

Microsoft and authentication services provider Okta said they are investigating claims of a potential breach alleged by the LAPSUS$ extortionist gang.

The leaked 37GB archive shows that the group may have accessed the repositories related to Microsoft's Bing, Bing Maps, and Cortana, with the images highlighting Okta's Atlassian suite and in-house Slack channels.

"For a service that powers authentication systems to many of the largest corporations I think these security measures are pretty poor," the group wrote on Telegram.

LAPSUS$ has since clarified that it did not breach Okta's databases and that "Our focus was ONLY on Okta customers." This could pose serious implications for other government agencies and companies that rely on Okta to authenticate user access to internal systems.

"In late January 2022, Okta detected an attempt to compromise the account of a third-party customer support engineer working for one of our subprocessors. The matter was investigated and contained by the subprocessor," Okta CEO Todd McKinnon said in a tweet.

Cloudflare, in response, said it's resetting the Okta credentials of employees who have changed their passwords in the last four months, out of abundance of caution.


News URL

https://thehackernews.com/2022/03/lapsus-hackers-claim-to-have-breached.html

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 480 75 2308 5127 264 7774
Okta 8 1 4 5 0 10