Okta breach impacted all customer support users. The attackers stole the name and email address for nearly all of Okta's customer support users. Some Okta customer support accounts had additional data fields exposed. Okta warns administrators to be on guard for targeted phishing attacks. Six percent of Okta customers still do not have multi-factor authentication. The breach was likely caused by an employee's compromised personal device. Okta should have implemented stronger access controls and security measures.

#Okta #SecurityBreach #CustomerSupport #DataBreach #PhishingAttacks #MultiFactorAuthentication

https://krebsonsecurity.com/2023/11/okta-breach-affected-all-customer-support-users/