Okta: "We made a mistake by not immediately reporting the Lapsus$ attack"

Source: https://cobaltstrike.net/2022/03/28/okta-we-made-a-mistake-by-not-immediately-reporting-the-lapsus-attack/

Representatives of Okta expressed regret that information about the hacking of the company by the extortionate group Lapsus$ was not disclosed earlier. The company admitted its mistake, and also provided a detailed schedule of the incident and its investigation.

“On January 20, 2022, the Okta Security team was alerted that a new factor had been added to the Okta account of the Sitel Customer Support Engineer. That factor was the password. Although this attempt was unsuccessful, for precautionary reasons, we reset the account and notified Sitel. We admit that we made a mistake,” the company’s representatives said.

According to Okta, in January, the company was unaware of the extent of the incident, which, according to the company, was limited to an unsuccessful attempt to intercept control over the Sitel support account.

“At the time, we didn’t realize that there was a risk to Okta and our customers. We would have made a different decision if we had all the facts that we have today,” Okta reported.

Earlier, the Lapsus$ cybercrime group published screenshots of data allegedly stolen after gaining access to the Telegram messenger. Okta.com Superuser/Admin and other computer systems of Okta. Okta analyzed screenshots depicting the alleged leakage of its data and reported that they were related to a cyber incident that occurred in January 2022.

Start a discussion …