Security News > 2024 > May > Okta warns of credential stuffing attacks targeting its CORS feature
Okta warns that a Customer Identity Cloud feature is being targeted in credential stuffing attacks, stating that numerous customers have been targeted since April.
Okta says it identified credential stuffing attacks starting on April 15, 2024, which targeted endpoints utilizing Customer Identity Cloud's cross-origin authentication feature.
Okta states these URLs are targeted in credential stuffing attacks and should be disabled if they are not in use.
It's worth noting that Okta warned its customer base about "Unprecedented" credential stuffing attacks late last month, originating from the same threat actors who have been targeting Cisco Talos products since March 2024.
BleepingComputer contacted Okta to ask how many customers have been impacted by the credential stuffing attacks.
Okta warns of "Unprecedented" credential stuffing attacks on customers.