Okta
Misconfiguration Expose Okta Master Passwords
Authomize’s Security Research Lab has released a new report outlining misconfiguration risks for Okta users that can lead to the theft of cleartext Okta master passwords and compromise of all cleartext passwords ...
Okta Adds Security Center to Provide Real-Time Threat Visibility
Okta this week made available Security Center, an extension of the Okta Customer Identity Cloud that provides a real-time view of authentication events, potential security incidents and threat response efficacy. Ian Hassard, ...
Zoom Taps Okta to Bring Zero-Trust Cybersecurity to Videoconferences
Okta and Zoom today announced an integration through which cybersecurity administrators will be able to centrally manage end-to-end encryption across the Zoom videoconferencing platform. The Okta Authentication for End-to-End Encryption (E2EE) makes ...
Okta Report Surfaces Progress on Shift to Zero-Trust
A report published this week by Okta suggested that organizations have significantly shifted allocation of budgets to ensure higher levels of security. Based on an anonymized analysis of how Okta customers allocated ...
CircleCI Rotates GitHub OAuth Tokens After Security Incident
Following a security incident, CircleCI has completed the process of rotating GitHub OAuth tokens for their customers. CircleCI said Saturday that while customers could still rotate their own tokens, it has “confidence ...
LastPass Password Vaults Stolen, Pig Butchering Scams, Okta Source Code Theft
Things get worse for LastPass as a security breach in November resulted in the theft of customer data, including encrypted password vaults and unencrypted web addresses. Pig butchering scams, a variation of ...
Okta’s Source Code Stolen in GitHub Breach
Okta’s source code was stolen in a breach of their GitHub repos, marking the 2nd significant attack on this critical IAM provider. Read how to secure your Okta with ITDR. The post ...
Okta Identity Credentials on the Radar of Oktapus Phishing Campaign
The phishing campaign, Oktapus, targeted Okta who recently became victim of its phishing attempts. 169 unique domains were identified that fraudsters used to create fake websites ...
0ktapus/‘Scatter Swine’ Hacking Gang Stole 10,000 Corp Logins via Twilio
More on the Twilio débâcle from earlier this month: Researchers reveal the hackers swiped at least 9,931 user credentials from more than 130 organizations ...
Authomize Discovers PassBleed Password Stealing and Impersonation Risks in Okta
Organizations depend on their Identity Providers for managing their identities and access to their apps and services, using them as their trusted management solution for everything from Single Sign-On and Multi-Factor Authentication ...