Okta

Major breaches allegedly caused by unsecured Snowflake accounts

Significant data breaches at online ticketing platform Ticketmaster and consumer bank Santander appear to be linked to the abuse of unsecured accounts held with cloud data management platform Snowflake, it has emerged over the past few days. The Ticketmaster breach – confirmed on Friday 31 May by parent organisation Live Nation – saw the personal…

Major breaches allegedly caused by unsecured Snowflake accounts Read More »

Customers speak out over Okta’s response to latest breach

Cyber security companies BeyondTrust and Cloudflare have criticised identity and access management (IAM) specialist Okta after both became ensnared in yet another cyber attack against the latter’s systems. BeyondTrust said it detected an identity-centric attack on an in-house Okta admin account on 2 October 2023, which used a valid session cookie stolen from Okta. It…

Customers speak out over Okta’s response to latest breach Read More »

1Password caught up in Okta support breach

Credential management software supplier 1Password has disclosed it has been caught up in the same breach of the tech support systems of fellow identity and access management (IAM) specialist Okta that impacted BeyondTrust and Cloudflare. 1Password chief technology officer (CTO) Pedro Canahuati said the firm detected suspicious activity on the Okta tenant it uses to…

1Password caught up in Okta support breach Read More »

MGM faces £100m loss from cyber attack on its casinos

US leisure and hospitality giant MGM Resorts has confirmed that hackers stole the personal information of an unspecified number of its customer’s following an early September cyber attack that is expected to cost the company $100m. The 11 September cyber attack – perpetrated by the UNC3944 threat group, otherwise known as Scattered Spider, likely as…

MGM faces £100m loss from cyber attack on its casinos Read More »

Okta confirms link to cyber attacks on Las Vegas casinos

David Bradbury, chief information security officer (CISO) at identity and access management (IAM) specialist Okta, has confirmed that two cyber attacks targeting Las Vegas casino operators MGM Resorts and Caesars Entertainment appeared to exploit the company’s technology as an access vector, providing a clue as to how the concurrent cyber attacks began. In a newly…

Okta confirms link to cyber attacks on Las Vegas casinos Read More »

Las Vegas mainstay Caesars Palace likely paid off ransomware crew

Caesars Entertainment, operator of the venerable Las Vegas casino Caesars Palace, has revealed that it paid a significant sum of money to its attackers following a recent ransomware attack, which was possibly the work of the same threat actor that breached competitor MGM Resorts using the ALPHV/BlackCat ransomware. In a filing made to the US…

Las Vegas mainstay Caesars Palace likely paid off ransomware crew Read More »

Okta customers targeted in new wave of social engineering attacks

Identity and access management (IAM) specialist Okta has warned its customers to be alert to a developing campaign of cyber attacks in which an unknown threat actor is using social engineering to hijack highly privileged roles in their Okta tenants. The supplier said that over the past couple of weeks, multiple US-based customers had reported…

Okta customers targeted in new wave of social engineering attacks Read More »

Teenage Lapsus$ ringleader was responsible for crime spree, UK court rules

The alleged teenage ringleader of the Lapsus$ cyber extortion collective, which hacked into the systems of multiple high-profile victim organisations in 2021 and 2022, has been ruled responsible for his hacking spree at Southwark Crown Court. The 18-year old from Oxford, who was first named as Arion Kurtaj earlier is year, is autistic and was…

Teenage Lapsus$ ringleader was responsible for crime spree, UK court rules Read More »

US Cyber Board to probe cloud security after latest Exchange hack

The US Cyber Safety Review Board (CSRB) is to conduce a review of cloud cyber security, focusing on what government bodies, industry and cloud service providers need to do better to strengthen identity management and authentication in the cloud. The probe comes in the wake of the July 2023 Microsoft Exchange Online incident, which will…

US Cyber Board to probe cloud security after latest Exchange hack Read More »

Shopping Cart
Shopping cart0
There are no products in the cart!
Continue shopping
0
Scroll to Top