Okta

Major breaches allegedly caused by unsecured Snowflake accounts

Significant data breaches at online ticketing platform Ticketmaster and consumer bank Santander appear to be linked to the abuse of unsecured accounts held with cloud data management platform Snowflake, it has emerged over the past few days. The Ticketmaster breach – confirmed on Friday 31 May by parent organisation Live Nation – saw the personal…

Major breaches allegedly caused by unsecured Snowflake accounts Read More »

Enhance identity controls before banning ransomware payments

I agree with Ciaran Martin that ransomware payments should be banned, however, the reality is that while many large corporations will have appropriate controls, measures and backups in place, SME organisations may be unable to recover from losing that data. Losing sensitive data that could be health, legal or financial data could have real world…

Enhance identity controls before banning ransomware payments Read More »

Cosmetics retailer Lush dealing with mystery cyber incident

Dorset-based cosmetics retailer Lush has fallen victim to a cyber security incident of a currently undisclosed nature, via a brief notice posted to its website on 11 January. “Lush UK&I is currently responding to a cyber security incident and working with external IT forensic specialists to undertake a comprehensive investigation,” the organisation confirmed. “The investigation…

Cosmetics retailer Lush dealing with mystery cyber incident Read More »

An inside look at a Scattered Spider cyber attack

Threat researchers at ReliaQuest have shared intelligence on how one of the organisation’s customers was impacted by a cyber attack originating via the Scattered Spider group that has made a speciality of abusing identity and authentication services to attack its victims, and has left cops struggling to respond. The highly dangerous English-speaking group is also…

An inside look at a Scattered Spider cyber attack Read More »

Customers speak out over Okta’s response to latest breach

Cyber security companies BeyondTrust and Cloudflare have criticised identity and access management (IAM) specialist Okta after both became ensnared in yet another cyber attack against the latter’s systems. BeyondTrust said it detected an identity-centric attack on an in-house Okta admin account on 2 October 2023, which used a valid session cookie stolen from Okta. It…

Customers speak out over Okta’s response to latest breach Read More »

1Password caught up in Okta support breach

Credential management software supplier 1Password has disclosed it has been caught up in the same breach of the tech support systems of fellow identity and access management (IAM) specialist Okta that impacted BeyondTrust and Cloudflare. 1Password chief technology officer (CTO) Pedro Canahuati said the firm detected suspicious activity on the Okta tenant it uses to…

1Password caught up in Okta support breach Read More »

Shopping Cart
Scroll to Top