Security News > 2022 > March > Okta confirms support engineer's laptop was hacked in January
Okta confirmed today they suffered a security incident in January this year when hackers gained access to the laptop of one of its support engineers that could initiate passwords resets fort customers.
Results from the forensic investigation showed that the attacker had an opportunity window of five days, during which time the intruder had access to the laptop of an Okta support engineer that could initiate passwords resets fort customers.
"The report highlighted that there was a five-day window of time between January 16-21, 2022, where an attacker had access to a support engineer's laptop. This is consistent with the screenshots that we became aware of yesterday," Okta says in an updated statement on the incident.
"Support engineers do have access to limited data - for example, Jira tickets and lists of users - that were seen in the screenshots. Support engineers are also able to facilitate the resetting of passwords and multi-factor authentication [MFA] factors for users, but are unable to obtain those passwords" - Okta.
Okta learned of the breach attempt after detecting "An unsuccessful attempt to compromise the account of a customer support engineer working for a third-party provider."
In response to Okta's statements today, the Lapsus$ group shared their part of the story saying that they did not compromise an Okta employee's laptop but their thin client.