Threat Actors Infiltrated 1Password's Okta Tenant Using Stolen IT Employee Session Cookie
Threat Actors Infiltrated 1Password's Okta Tenant Using Stolen IT Employee Session Cookie
Spain busts 34 alleged online scammers, OpenStreetMap new digital hostility front in Hamas war, Microsoft to spend $5 billion to help Australia's cyber shield, September broke ransomware records, more
Popular password management platform 1Password suffered a security incident after hackers accessed its Okta ID management tenant.
"We detected suspicious activity on our Okta instance related to their Support System incident. After a thorough investigation, we concluded that no 1Password user data was accessed," reads a brief security incident notification from 1Password CTO Pedro Canahuati.
"On September 29, we detected suspicious activity on our Okta instance that we use to manage our employee-facing apps. We immediately terminated the activity, investigated, and found no compromise of user data or other sensitive systems, either employee-facing or user-facing."
Okta last week disclosed that threat actors breached its support case management system using stolen credentials.
As part of these support cases, Okta …
Keep reading with a 7-day free trial
Subscribe to Metacurity to keep reading this post and get 7 days of free access to the full post archives.