Okta authentication service provider is investigating reports of digital breaches, the company said on Tuesday, after hackers posted screenshots showing what they claim was its internal company environment.
Hacking in Okta can have huge consequences as thousands of other companies rely on San Francisco-based firms to manage access to their own networks and applications.
The company is aware of the report and is investigating, Okta official Chris Hollis said in a brief statement.
“We will provide updates when more information is available,” he added.
Screenshots were posted by a group of hackers seeking a ransom known as Lapsus $ on their Telegram channel late Monday. In an accompanying message, the group said its focus is “ONLY on Okta customers.”
Security experts told Reuters that the screenshots looked authentic.
“I definitely believe it’s credible,” said independent security researcher Bill Demirkapi, citing a photo that looked like Okta’s internal ticket and his internal chat on the Slack messaging app.
And Tentler, founder of cybersecurity consultancy Phobos Group, said he also believes the breach is real and urged Okta customers to be “extremely vigilant now.”
In an email, Tentler added, “There is a time and date stamp visible in the screenshot showing January 21 of this year, which indicates they may have access for two months.”
© Thomson Reuters 2022
For the latest technology news and reviews, follow Tools 360 at Twitter, Facebook and Google News. For the latest videos on tools and technology, subscribe to our YouTube channel.
Infinix Hot 11 2022 with Cost Under Rs. 10,000, Design Teased Ahead of Indian Launch