Supply chain attacks highlight the criticality of third-party risk management, and cyber risk conversations in the boardroom is now more important than ever.  Amidst an ever-evolving cyber threat landscape and increasingly sophisticated cyber-attacks, having cyber risk assessment conversations in the boardroom is now more important than ever…

From customers making online purchases to corporate partners and contractors accessing digital resources, digital identity is an increasingly important part of any business today. This is particularly the case in Australia where the digital economy accelerated during the COVID-19 pandemic, with many Australians turning online for healthcare, work,…

We have concluded our investigation into the January 2022 compromise of our third-party vendor. At the outset of our investigation, we focused on a five-day window of time, between January 16 and 21, when the third-party forensic firm, engaged by our vendor Sitel, indicated that the threat actor had access to their environment. Based on that…

This update was posted at 8:50 AM, Pacific Time. ++ On March 22, 2022, nearly 24 hours ago, a number of screenshots were published online that were taken from a computer used by one of Okta’s third-party customer support engineers. The sharing of these screenshots is embarrassing for myself and the whole Okta team.  In this post, I want to provide…

This update was posted at 6:31 PM, Pacific Time. ++ As we shared earlier today, we are conducting a thorough investigation into the recent LAPSUS$ claims and any impact on our valued customers. The Okta service is fully operational, and there are no corrective actions our customers need to take.   After a thorough analysis of these claims, we have…

Since March of 2020, organisations worldwide have turned to technology to stay afloat during the interruptions caused by the COVID-19 pandemic. Companies rushed to support remote working, enabling new online experiences to stay connected to employees and to transact with customers.  Cutting-edge tech solutions, once considered only by “early…

In late January 2022, Okta detected an attempt to compromise the account of a third party customer support engineer working for one of our subprocessors. The matter was investigated and contained by the subprocessor. We believe the screenshots shared online are connected to this January event. Based on our investigation to date, there is no…

Fully enforced in 2022! Key points of the Amendments to the Act on the Protection of Personal Information The Act on the Protection of Personal Information stipulates obligations of companies handling personal information need to comply with in order to protect privacy. On April 1, 2022, the 2020 Amendments to tthe Act on the Protection of…

Customer expectations are higher than ever. UX stats show, 88% of online shoppers say that, after having a bad user experience, they wouldn’t return to a website. Customers expect a tailored digital experience that’s secure, but also allows them access to the applications they need—from whichever device is nearby.  To that end, your application's…

Last year, global translation and localisation company Welocalize added an extra layer of authentication to its client portal by teaming up with Okta. Now, Welocalize is delivering an easy-to-use portal experience that also meets its clients’ stringent information security (infosec) and data security needs. That extra layer is Okta Single Sign-On,…