{"id":592304,"date":"2022-03-22T10:54:01","date_gmt":"2022-03-22T10:54:01","guid":{"rendered":"https:\/\/www.abnewswire.com\/pressreleases\/?p=592304"},"modified":"2022-03-22T10:54:01","modified_gmt":"2022-03-22T10:54:01","slug":"authentication-firm-okta-probes-report-of-digital-breach","status":"publish","type":"post","link":"https:\/\/www.abnewswire.com\/pressreleases\/authentication-firm-okta-probes-report-of-digital-breach_592304.html","title":{"rendered":"Authentication firm Okta probes report of digital breach"},"content":{"rendered":"<div style=\"float:right;  width:250px; padding:8px 10px 10px 10px;\"><a href=\"https:\/\/www.abnewswire.com\/uploads\/1647934361.jpeg\" style=\"border:none !important;\" target=\"_blank\" rel=\"nofollow\" ><img loading=\"lazy\" decoding=\"async\" class=\"alignnone size-medium wp-image-29\" title=\"Authentication firm Okta probes report of digital breach\" src=\"https:\/\/www.abnewswire.com\/uploads\/1647934361.jpeg\" alt=\"Authentication firm Okta probes report of digital breach\" width=\"225\" height=\"225\" \/><\/a><\/div>\n<div style=\"font-style:italic; padding:8px 0px;\">Okta, a major Single Sign-On provider that allows people to use one account to log into multiple digital services, confirmed Tuesday it is investigating a potential breach after the Lapsus$ ransomware gang claimed access to its systems.<\/div>\n<p style=\"text-align: justify;\"><strong>WASHINGTON &#8211; March 22, 2022 &#8211;<\/strong> Okta Inc (OKTA.O), a supplier of authentication services, said on Tuesday that it is looking into a complaint of a data breach after hackers shared pictures of what they said was its internal corporate environment.<\/p>\n<p style=\"text-align: justify;\">Because hundreds of other organizations rely on <a rel=\"nofollow\" href=\"https:\/\/www.okta.com\/\" target=\"_blank\">Okta<\/a> to control access to their own networks and apps, a breach at the San Francisco-based corporation may have huge ramifications.<\/p>\n<p style=\"text-align: justify;\">Okta spokesman Chris Hollis stated in a brief statement that the business was aware of the <a rel=\"nofollow\" href=\"https:\/\/twitter.com\/_MG_\/status\/1506109152665382920\" target=\"_blank\">accusations<\/a> and was looking into them.<\/p>\n<p style=\"text-align: justify;\">&#8220;As additional information becomes available, we will make updates,&#8221; he continued.<\/p>\n<p style=\"text-align: justify;\">The screenshots were shared late Monday on the Telegram channel of a group of ransomware-seeking hackers known as LAPSUS$. The organization stated in an accompanying post that their emphasis was &#8220;ONLY on Okta consumers.&#8221;<\/p>\n<p style=\"text-align: justify;\">The screenshots looked to be genuine, according to security experts.<\/p>\n<p style=\"text-align: justify;\">&#8220;I absolutely believe that is legitimate,&#8221; said independent security researcher <a rel=\"nofollow\" href=\"https:\/\/twitter.com\/BillDemirkapi\/status\/1506107157124722690\" target=\"_blank\">Bill Demirkapi<\/a>, who cited screenshots of what seemed to be Okta&#8217;s internal tickets and an internal Slack discussion.<\/p>\n<p style=\"text-align: justify;\">Umair Akbar, <a rel=\"nofollow\" href=\"https:\/\/linkedin.com\/in\/umair-akbar\" target=\"_blank\">senior cloud security engineer<\/a> at a consultancy, agreed that the hack was real and advised Okta users to be &#8220;very alert right now.&#8221;<\/p>\n<p style=\"text-align: justify;\">&#8220;There are timestamps and dates evident in the pictures showing January 21st of this year, which shows they may have had access for two months,&#8221; Akbar wrote in an email.<\/p>\n<p style=\"text-align: justify;\">After the Lapsus$ ransomware group claimed access to its networks, Okta, a prominent Single Sign-On provider that allows customers to use one account to enter into various digital services, acknowledged to The Record Tuesday that it is investigating a potential breach.<\/p>\n<p style=\"text-align: justify;\">&#8220;Okta is aware of the claims and is presently investigating,&#8221; said Chris Hollis, senior communications manager at Okta, in an email to The Record. &#8220;As additional information becomes available, we will offer updates.&#8221; The probe has already been verified by Reuters. The probe was originally confirmed by Reuters.<\/p>\n<p style=\"text-align: justify;\">Lapsus$ is a new threat actor that has been connected to attacks on digital infrastructure, notably chipmaker NVIDIA, over its tumultuous history. An assault on Okta, if confirmed, would be a huge breach of digital supply networks.<\/p>\n<p style=\"text-align: justify;\">In recent years, the US Cybersecurity and Infrastructure Agency (CISA) has focused on securing digital supply chains.<\/p>\n<p style=\"text-align: justify;\">CISA and the US President both issued warnings on Monday based on &#8220;developing intelligence&#8221; regarding Russian state-sponsored attempts to disrupt key infrastructure in reaction to financial penalties imposed in response to Russia&#8217;s invasion of Ukraine.<\/p>\n<p style=\"text-align: justify;\">&#8220;If you haven&#8217;t already done so,&#8221; the president said in a statement Monday, &#8220;I urge our private sector partners to quickly enhance their cyber defenses by applying the best practices we&#8217;ve created together over the previous year.&#8221;<\/p>\n<p style=\"text-align: justify;\">Lapsus$ claimed to have leaked 37 GB of stolen source code for Bing, Cortana, and other Microsoft projects on Monday, and Microsoft acknowledged it was looking into the matter.<\/p>\n<p style=\"text-align: justify;\">Additionally, the gang claimed today that they had infiltrated LG Electronics (LGE) for the &#8220;second time&#8221; in a year, albeit this claim has not been corroborated by BleepingComputer:<\/p>\n<p style=\"text-align: justify;\">LG Electronics is said to have been hacked by Lapsus.&nbsp;Mercado Libre announced last month that they had been hacked by Lapsus$, which has previously published terabytes of sensitive material reportedly obtained from top businesses such as Samsung and NVIDIA.<\/p>\n<p style=\"text-align: justify;\">Material extortion gangs like as Lapsus$ penetrate victims, but instead of encrypting private files like ransomware, these actors steal and hold on to victims&#8217; proprietary data, which they then disseminate if their extortion demands are not satisfied.<\/p>\n<p style=\"text-align: justify;\">If Lapsus$&#8217; allegations of a breach of Okta&#8217;s systems prove to be true, it&#8217;ll be interesting to see how many of Okta&#8217;s clients were affected and to what degree.<\/p>\n<p><span style='font-size:18px !important;'>Media Contact<\/span><br \/><strong>Company Name:<\/strong> <a href=\"https:\/\/www.abnewswire.com\/companyname\/jinsla.com_88664.html\" rel=\"nofollow\">National Alliance for Cybersecurity Advancement<\/a><br \/><strong>Contact Person:<\/strong> Media Relations<br \/><strong>Email:<\/strong> <a href=\"https:\/\/www.abnewswire.com\/email_contact_us.php?pr=authentication-firm-okta-probes-report-of-digital-breach\" rel=\"nofollow\">Send Email<\/a><br \/><strong>Phone:<\/strong> 1-800-CYBERSEC<br \/><strong>Country:<\/strong> United States<br \/><strong>Website:<\/strong> <a href=\"https:\/\/jinsla.com\" target=\"_blank\" rel=\"nofollow\">https:\/\/jinsla.com<\/a><\/p>\n<p><object type=\"text\/html\" data=\"https:\/\/jinsla.com\" style=\"width:900px; height:400px;\"><\/object><img decoding=\"async\" src=\"https:\/\/www.abnewswire.com\/press_stat.php?pr=authentication-firm-okta-probes-report-of-digital-breach\" alt=\"\" width=\"1px\" height=\"1px\" \/><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Okta, a major Single Sign-On provider that allows people to use one account to log into multiple digital services, confirmed Tuesday it is investigating a potential breach after the Lapsus$ ransomware gang claimed access to its systems. WASHINGTON &#8211; March &hellip; <a href=\"https:\/\/www.abnewswire.com\/pressreleases\/authentication-firm-okta-probes-report-of-digital-breach_592304.html\">Continue reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":1,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[421,412,423,411,404],"tags":[],"class_list":["post-592304","post","type-post","status-publish","format-standard","hentry","category-Computers-Software","category-News-Current-Affairs","category-Professional-Services","category-Technology","category-US"],"_links":{"self":[{"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/posts\/592304","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/comments?post=592304"}],"version-history":[{"count":0,"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/posts\/592304\/revisions"}],"wp:attachment":[{"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/media?parent=592304"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/categories?post=592304"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/www.abnewswire.com\/pressreleases\/wp-json\/wp\/v2\/tags?post=592304"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}