Authentication firm Okta says it has found no evidence of new attack after hackers claim breach

Authentication firm Okta says it has found no evidence of new attack after hackers claim breach


In this photo illustration an Okta logo seen displayed on a smartphone.

Rafael Henrique | SOPA Images | LightRocket | Getty Images

Identity management firm Okta has said it found no evidence of ongoing malicious activity after a group called Lapsus$ posted pictures claiming to have hacked the company.

Lapsus$ posted screenshots on its Telegram channel late Monday claiming it had access to a number of Okta’s systems. The hacking group said it did not access or steal any databases from Okta, but instead was focused on accessing its customers.

Okta said Tuesday that it had “detected an attempt to compromise the account of a third party customer support engineer working for one of our subprocessors” in January.

“The matter was investigated and contained by the subprocessor. We believe the screenshots shared online are connected to this January event. Based on our investigation to date, there is no evidence of ongoing malicious activity beyond the activity detected in January,” the company added.

Shares of Okta were down around 7% in pre-market trade in the U.S.

Okta is an authentication and identity management software company that is used by more than 15,000 organizations. Any data breach of Okta has raised concerns that hackers could get access to other organizations using Okta’s products.

Thousands of companies use Okta to secure and manage their identities. Through private keys retrieved within Okta, the cyber gang may have access to corporate networks and applications,” Ekram Ahmed, a spokesperson at cybersecurity firm Check Point, said in a statement.

He said Okta customers should “exercise extreme vigilance and cyber safety practices.”

Matthew Prince, the CEO of Cloudflare, an internet infrastructure company whose details Lapsus$ included in one of its screenshots, said there was “no evidence” his company had been compromised.

“Thankfully, we have multiple layers of security beyond Okta, and would never consider them to be a standalone option,” he added.

Lapsus$ has claimed responsibility for a number of data breaches of high-profile companies in the last few months, including at Samsung and chip giant Nvidia.



Source

Palo Alto shares pop as CEO Nikesh Arora buys stock for first time in years
Technology

Palo Alto shares pop as CEO Nikesh Arora buys stock for first time in years

Palo Alto Networks CEO Nikesh Arora disclosed his first share purchase since November 2019, as artificial intelligence disruption fears weigh on the cybersecurity sector. The purchase, disclosed Friday in an SEC filing, totaled 68,085 shares at about $10 million. Wall Street viewed the purchase as an upbeat sign for the downtrodden sector, lifting shares of […]

Read More
Delaware judge reassigns Elon Musk cases after accusation of bias
Technology

Delaware judge reassigns Elon Musk cases after accusation of bias

Elon Musk looks on as President Donald Trump speaks at the U.S.-Saudi Investment Forum at the John F. Kennedy Center for the Performing Arts in Washington, Nov. 19, 2025. Brendan Smialowski | Afp | Getty Images Judge Kathaleen McCormick of Delaware said Monday that she’s reassigning cases involving Elon Musk after the Tesla CEO accused […]

Read More
Oil’s record month, TSA pay, the Pokémon card resale market and more in Morning Squawk
Technology

Oil’s record month, TSA pay, the Pokémon card resale market and more in Morning Squawk

This is CNBC’s Morning Squawk newsletter. Subscribe here to receive future editions in your inbox. Happy Monday. This article about the future of film studios’ animated slates was the reminder I needed to go see “Hoppers,” as it feels like I’m the only one of my friends who hasn’t. Stock futures are higher this morning as Wall […]

Read More
Powered by WordPress | WP Magazine by WP Mag Plus