您现在的位置是:焦點 >>正文
【】
焦點214人已围观
简介Okta, the San Francisco-based identity and access management company, reported a security breach on ...
Okta, the San Francisco-based identity and access management company, reported a security breach on Friday. Hackers gained access to private customer information through its customer support management system.
In a site-wide announcement, Okta Chief Security Officer David Bradbury revealed that hackers viewed content uploaded by some Okta customers related to recent support cases. These files, known as HTTP archive (HAR) files, help support personnel replicate customer browser activity for troubleshooting.
SEE ALSO:23andMe may have suffered yet another breach – your data is in jeopardy"HAR files can also contain sensitive data, including cookies and session tokens, that malicious actors can use to impersonate valid users," Bradbury said.
Bradbury did not disclose how the credentials were stolen nor if two-factor authentication was in place for the compromised support system. To mitigate the damage, Okta revoked embedded session tokens and advised customers to sanitize credentials within HAR files before sharing.
According to Arstechnica, the initial hack was stopped by security firm BeyondTrust, which alerted Okta to suspicious activity about a month ago. However, due to some flaws within Okta's security model, some actions were still carried out by malicious actors.
Bradbury confirmed that all affected customers have been informed. He also provided IP addresses and browser user agents associated with the hackers for further investigation. He also added that Okta's main production service and Auth0/CIC case management system remain unaffected.
Okta has had its fair share of hacker troubles lately. In March 2022, a group called Lapsus$ accessed an Okta admin panel, allowing them to reset customer passwords and authentication credentials. In December of that same year, Okta's source code was stolen from a GitHub account.
TopicsCybersecurity
Tags:
转载:欢迎各位朋友分享到网络,但转载请说明文章出处“夫榮妻貴網”。http://new.maomao321.com/news/29b50099470.html
相关文章
These glasses hide a fitness tracker on your face
焦點The last time a company tried popularizing wearable tech embedded in glasses, most notably with Goog ...
【焦點】
阅读更多'Us' review roundup: Scarier than 'Get Out,' led by Lupita Nyong'o
焦點Jordan Peele changed the horror game and won an Oscar for 2017's Get Out, so there was a lot of pres ...
【焦點】
阅读更多Twitter is redesigning its camera to feel more like Snapchat
焦點When you think of social media companies and cameras, Twitter is probably not the first app to come ...
【焦點】
阅读更多
热门文章
- 17 questions you can answer if you're a good communicator
- Jaunt turns old gas cars into electric vehicles for road adventures
- Hallmark drops Lori Loughlin after college admissions scandal
- Slack removes more than two dozen accounts tied to hate groups
- Fake news reports from the Newseum are infinitely better than actual news
- 5 bizarre facts about Elizabeth Holmes 'The Inventor' left out
最新文章
You will love/hate Cards Against Humanity's new fortune cookies
Jaunt turns old gas cars into electric vehicles for road adventures
Hallmark drops Lori Loughlin after college admissions scandal
Why is Fox News so quiet about Jeanine Pirro's anti
Did our grandparents have the best beauty advice?
Dan Levy announces 'Schitt's Creek' to end with sixth and final season