The Dilemma of Attacking Okta, Red Team Operations

Introduction An ominous login page, mysterious isn’t it? This page is seen by hundreds of employees/customers of companies like Discord, Microsoft, Paypal, GoDaddy, Roblox, etc. This is an Okta login page, successfully authenticating yourself with one of these will usually redirect you to a companies internal services, such as: Jira, Confluence, Metrics systems, the whole shebang! Okta? Okta is “an American identity and access management company” that allows companies to easily manage and c

Cyber Defense eMagazine April RSAC Special Edition for 2023

Customer Spotlight: Identity Under Attack

Okta Under Fire Over Handling of Security Incident - WSJ

MGM Resorts cyberattack–from cloud to casino floor - Skyhigh Security

Lapsus$ Okta attack: Supply chain breach fears grow - Tech Monitor

LAPSUS$, Okta, and Detecting Malicious Activity in Your Environments

Guide to Red Team Operations - Hacking Articles

Computing

Okta Says It Goofed in Handling the Lapsus$ Attack

Automated Incident Response with Okta

Okta breach and third party risk: Preventing supply chain attacks

Okta investigates LAPSUS$ gang's compromise claims