Image: NurPhoto/Contributor
Hacking. Disinformation. Surveillance. CYBER is Motherboard's podcast and reporting on the dark underbelly of the internet.
Advertisement
The statement pointed to screenshots of apparent internal Okta systems posted in the Telegram channel of the hacking group that calls itself LAPSUS$ on Monday. The screenshots showed someone logged into Okta systems with the list of various apps they could then access from that position, and a Slack that appears to belong to Okta. Some of the screenshots also showed someone in the process of resetting a password belonging to a specific employee at cybersecurity firm Cloudflare, and another appeared to show access to a panel associated with the firm too. Those images suggest that the hackers were potential trying to leverage their access to Okta to gain access to Cloudflare assets, which provides infrastructure and security services to millions of websites.Do you work at Okta? Do you know anything about this breach or others? We'd love to hear from you. Using a non-work phone or computer, you can contact Joseph Cox securely on Signal on +44 20 8133 5190, Wickr on josephcox, or email joseph.cox@vice.com.
Advertisement
Advertisement