Bank Info Security – Rashmi Ramesh
Identity management company Okta says that it should have notified customers of a breach earlier involving Lapsus$, saying that the hacking group compromised a laptop belonging to Sitel, a third-party customer support firm, via remote desktop protocol, enabling it to infiltrate Okta’s network.
Okta has said that a third-party customer support engineer’s laptop was infiltrated by malicious hacking group Lapsus$ via remote access in an attempt to infiltrate the identity management firm’s network.
Bradbury provided a timeline of events for the incident on a virtual call on Wednesday, and in his statement he describes the incident as “embarrassing,” comparing it to leaving a laptop unattended in a coffee shop.
Link: https://www.bankinfosecurity.in/okta-should-have-moved-more-swiftly-over-breach-a-18782