wp-plugin-hostgator domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114ol-scrapes domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114Source: https:\/\/www.theverge.com\/2022\/3\/22\/22990637\/okta-breach-single-sign-on-lapsus-hacker-group<\/a> Okta, an authentication company used by thousands of organizations around the world, says it\u2019s investigating news of a potential breach, Reuters<\/em> reports<\/a>. The disclosure comes as hacking group Lapsus$ has posted screenshots to its Telegram channel claiming to be of Okta\u2019s internal systems, including one that appears to show Okta\u2019s Slack channels, and another with a Cloudflare interface. <\/p>\n Any hack of Okta could have major ramifications for the companies, universities, and government agencies that depend upon Okta to authenticate user access to internal systems.<\/p>\n Writing in its Telegram channel, Lapsus$ claims to have had \u201cSuperuser\/Admin\u201d access to Okta\u2019s systems for two months, but said its focus was \u201conly on Okta customers.\u201d The Wall Street Journal<\/em> notes<\/a> that in a recent filing Okta said it had over 15,000 customers around the world. It lists the likes of Peloton, Sonos, T-Mobile, and the FCC as customers on its website<\/a>. <\/p>\n In a statement sent to The Verge<\/em>, Okta spokesperson Chris Hollis downplayed the incident, and said Okta has not found evidence of an ongoing attack. \u201cIn late January 2022, Okta detected an attempt to compromise the account of a third party customer support engineer working for one of our subprocessors. The matter was investigated and contained by the subprocessor.\u201d Hollis said. \u201cWe believe the screenshots shared online are connected to this January event.\u201d<\/p>\n \u201cBased on our investigation to date, there is no evidence of ongoing malicious activity beyond the activity detected in January,\u201d Hollis continued. However, writing in their Telegram channel, Lapsus$ suggested<\/a> that it had access for a few months. <\/p>\n This is our 3rd attempt at sharing the 5th – 8th photo. LAPSUS$ displayed a lot of sensitive information and\/or user information, so much so we end up missing to censor some.<\/p>\n Photos 5 – 8 attached below. pic.twitter.com\/KGlI3TlCqT<\/a><\/p>\n \u2014 vx-underground (@vxunderground) March 22, 2022<\/a>\n<\/p><\/blockquote>\n<\/div>\n Lapsus$ is a hacking group that\u2019s claimed responsibility for a number of high-profile incidents affecting Nvidia<\/a>, Samsung<\/a>, Microsoft<\/a>, and Ubisoft<\/a>, in some cases stealing hundreds of gigabytes of confidential data. <\/p>\n<\/div>\n
\n
<\/br><\/code><\/p>\n\n