UPDATE: Customer Impact in the Okta Salesforce Breach
The following is a message we sent to our customers earlier this week:
We at Crosswire wanted to update you about a significant security incident involving Okta. Crosswire sources, along with public reports, have confirmed that Okta's Salesforce instance experienced a breach in September 2023. This incident is part of the larger Okta breach that was previously reported. Unfortunately, this has impacted all Okta customers, including potentially leading to the leak of your company's Okta administrator information.
To address this situation, we advise the following steps:
- Please review any compromised data and obtain a list of users who were affected. This can be done through the Okta support portal, accessible here. Note: You need to have Okta super admin privileges to access this link.
- Log into Crosswire and closely examine any threats that could indicate compromises to your Okta admin accounts. This includes tracking potential issues from September to the present. Pay special attention to any anomalous sign-in attempts, unusual admin portal access, and new enrollments in MFA authenticators.
- Advise any affected Okta users to be especially alert to phishing attempts following this breach.
We will continue to monitor the situation and provide updates on any additional fallout from the Okta security breach. Should you have any further questions or need assistance, please do not hesitate to reach out to your Crosswire team.
More from our blog
Explore essential identity governance best practices for security leaders, ensuring robust security frameworks and compliance adherence. Learn more today.
A comprehensive timeline and breakdown of the October 2023 Okta Support Case Management System breach.
In light of October 2023 Okta support compromise, Crosswire sent the following message to its customers.
The term Identity Threat Detection and Response (ITDR) has gained significant popularity this year, but what is ITDR, actually?
CISOs Chris Castaldo and Tanner Randolph share insights on security maturity and identity in the enterprise.
Whether this is your 1st or 21st time at Black Hat, these tips can help you weather a jam-packed and intense week.
False positives are a huge problem in security: see what Crosswire is doing to prevent them and mitigate their effects.
We've made the modern identity stack entirely too convoluted and broken, but not for the reasons you think.
How are you protecting your accounts before an incident can occur (or slowing an incident down before it really ramps up)?
This is Solution 2: Remediate of a two-part series on how to detect and remediate evolving identity threats.
This is Solution 1: Detect of a two-part series on how to detect and remediate evolving identity threats.
Explore the historical use, modern approaches, and future applications of AI in detection and response (D&R).
If you’re looking for the right time to join a high-risk, high-reward venture, we’d argue that there’s never been a better opportunity.
IT security audits can be a pain for everyone involved: check out our solutions to make this auditing season just a little bit easier.
RBAC lacks sophistication and flexibility, failing to address the access needs of the modern company.
Who owns identity at your org? Identity is (and should be treated as) a co-owned problem between security and IT.
Yep, you heard that right; we at Crosswire believe that your Okta groups should be as empty as possible.
Crosswire, and its co-founders Johnny and Nick, are building the future of enterprise identity in new and exciting ways.
The theme for 2023’s RSA Conference™ is “Stronger Together.” When info security is more important than ever, so is collaboration.
It’s no secret that your IT organization is crucial to your company. But are they getting all of the resources they need?
Why cybersecurity is more crucial than ever and what you can do to make your organization more secure, no matter your role.
Five significant ways to improve your workflows with automation and get more results than your resources permit.
Crosswire’s technical usability guide to Okta Lifecycle Management (LCM), from onboarding to offboarding.
Subscribe to our blog
Get Crosswire's security insights delivered straight to your inbox. No frills, no spams, unsubscribe anytime!