Security News > 2022 > March > Okta confirms 2.5% customers impacted by hack in January
Okta confirmed today they suffered a security incident in January when hackers compromised a laptop of one of its support engineers that could initiate password resets for customers.
"The report highlighted that there was a five-day window of time between January 16-21, 2022, where an attacker had access to a support engineer's laptop. This is consistent with the screenshots that we became aware of yesterday," Okta says in an updated statement on the incident.
In a later update Tuesday evening, Okta is now stating that approximately 2.5% of its customers were affected by the Lapsus$ cyberattack.
"We have identified those customers and are contacting them directly. If you are an Okta customer and were impacted, we have already reached out directly by email," explains Okta's Tuesday evening update.
Cloudflare notes that Okta services are used internally for employee identity integrated in the authentication stack and that its customers have nothing to worry about, "Unless they themselves use Okta.".
In response to Okta's statements today, the Lapsus$ group shared their part of the story saying that they did not compromise an Okta employee's laptop but their thin client.