时间:2026-07-07 08:25:33 来源:网络整理编辑:時尚
Okta, the San Francisco-based identity and access management company, reported a security breach on
Okta, the San Francisco-based identity and access management company, reported a security breach on Friday. Hackers gained access to private customer information through its customer support management system.
In a site-wide announcement, Okta Chief Security Officer David Bradbury revealed that hackers viewed content uploaded by some Okta customers related to recent support cases. These files, known as HTTP archive (HAR) files, help support personnel replicate customer browser activity for troubleshooting.
SEE ALSO:23andMe may have suffered yet another breach – your data is in jeopardy"HAR files can also contain sensitive data, including cookies and session tokens, that malicious actors can use to impersonate valid users," Bradbury said.
Bradbury did not disclose how the credentials were stolen nor if two-factor authentication was in place for the compromised support system. To mitigate the damage, Okta revoked embedded session tokens and advised customers to sanitize credentials within HAR files before sharing.
According to Arstechnica, the initial hack was stopped by security firm BeyondTrust, which alerted Okta to suspicious activity about a month ago. However, due to some flaws within Okta's security model, some actions were still carried out by malicious actors.
Bradbury confirmed that all affected customers have been informed. He also provided IP addresses and browser user agents associated with the hackers for further investigation. He also added that Okta's main production service and Auth0/CIC case management system remain unaffected.
Okta has had its fair share of hacker troubles lately. In March 2022, a group called Lapsus$ accessed an Okta admin panel, allowing them to reset customer passwords and authentication credentials. In December of that same year, Okta's source code was stolen from a GitHub account.
TopicsCybersecurity
Honda's all2026-07-07 08:16
歐陽娜娜迎來20歲首播 帶火“降噪大魔王”OPPO Enco W512026-07-07 07:41
範海霞 :電商模特新秀2026-07-07 07:30
佟麗婭稱選手像易烊千璽,男方粉絲不幹 ,飯圈太敏感會四麵樹敵嗎2026-07-07 07:26
One of the most controversial power struggles in media comes to a close2026-07-07 07:24
網文盜版年損失56.4億 閱文五大舉措嚴打“筆趣閣”等盜版2026-07-07 07:03
迷霧劇場《隱秘的角落》評分9.2 秦昊王景春攜手開啟驚險夏日冒險2026-07-07 06:59
劉怡潼在克拉克拉化身聲音主播,與粉絲連麥熱聊《三千鴉殺》幕後趣事2026-07-07 06:07
Old lady swatting at a cat ends up in Photoshop battle2026-07-07 06:04
楊坤DOULive直播間正麵回應驚雷事件,金句頻出成“坤言坤語”2026-07-07 05:50
Pole vaulter claims his penis is not to blame2026-07-07 08:23
“跑男”集結約飯 ?沙溢李晨《未知的餐桌》苦尋晚餐2026-07-07 07:47
黃奕參加百星百億公益直播 助力武漢複工複產2026-07-07 06:59
知情人 :蔣凡或和正妻協議離婚 張大奕確實在杭州定居了2026-07-07 06:49
Singapore gets world's first driverless taxis2026-07-07 06:45
《每個夏天,總在為你“牽腸掛肚”》2026-07-07 06:31
高圓圓李光潔久違同台,11年前兩人曾當街擁抱 ,周圍群眾激動鼓掌2026-07-07 06:27
《絕世千金第二部》陣容曝光,製作升級高糖依舊!2026-07-07 06:17
Uber's $100M settlement over drivers as contractors may not be enough2026-07-07 06:08
《月上重火》“透芝CP”高甜大婚 愛奇藝加碼寵粉送福利“直通”婚宴2026-07-07 06:00