Data Breach

Okta Data Breach

366 records exposed • January 2022

Teenage hackers from LAPSUS$ broke into a company that Okta hired for support. They could have accessed hundreds of Okta customers. Okta took two months to tell anyone.

What Happened

The LAPSUS$ hacking group compromised an Okta support contractor, potentially accessing 366 customer tenants. The delayed disclosure caused significant industry concern.

Attack method: LAPSUS$ group via third-party contractor

What Data Was Exposed

Customer tenant data, Support case information

Is your business exposed?

What to Do If You're Affected

1.
Review Okta admin logs for suspicious activity
2.
Reset Okta admin credentials
3.
Enable additional monitoring on Okta tenant

Lessons for Businesses

• Third-party contractors are attack vectors
• Identity providers are high-value targets
• Incident disclosure timelines matter

Sources

https://www.okta.com/blog/2022/03/updated-okta-statement-on-lapsus/

Related Breaches

Uber 2022

Is your business exposed?

Check if your company data is circulating on the dark web

Free scan • No credit card required