Okta Breach Hit Over 130 Customers

A security breach at Okta, a company specialising in identity and access management, has affected over 130 customers, some of whom experienced subsequent session hijacking attacks. The breach began with a stolen credential being used to access the company’s support case management system, allowing the threat actor to access sensitive files and hijack sessions. Okta became aware of the breach two weeks after it had begun.