Security News > 2022 > April > Okta Says Security Breach by Lapsus$ Hackers Impacted Only Two of Its Customers
Identity and access management provider Okta on Tuesday said it concluded its probe into the breach of a third-party vendor in late January 2022 by the LAPSUS$ extortionist gang.
Stating that the "Impact of the incident was significantly less than the maximum potential impact" the company had previously shared last month, Okta said the intrusion impacted only two customer tenants, down from 366 as was initially assumed.
The security event took place on January 21 when the LAPSUS$ hacking group gained unauthorized remote access to a workstation belonging to a Sitel support engineer.
It only became public knowledge nearly two months later when the adversary posted screenshots of Okta's internal systems on their Telegram channel.
"Control lasted for 25 consecutive minutes on January 21, 2022," David Bradbury, Okta's chief security officer, said.
"The threat actor was unable to authenticate directly to any Okta accounts," Bradbury added.
News URL
https://thehackernews.com/2022/04/okta-says-security-breach-by-lapsus.html
Related news
- Live Ransomware Demo: See How Hackers Breach Networks and Demand a Ransom (source)
- How to Improve Okta Security in Four Steps (source)
- Oracle denies breach after hacker claims theft of 6 million data records (source)
- Chinese Hackers Breach Asian Telecom, Remain Undetected for Over 4 Years (source)
- There are 10,000 reasons to doubt Oracle Cloud's security breach denial (source)
- StreamElements discloses third-party data breach after hacker leaks data (source)
- Hackers lurked in Treasury OCC’s systems since June 2023 breach (source)
- Lazarus hackers breach six companies in watering hole attacks (source)
- Commvault Confirms Hackers Exploited CVE-2025-3928 as Zero-Day in Azure Breach (source)
- Luna Moth extortion hackers pose as IT help desks to breach US firms (source)