Okta hack puts thousands of businesses on high alert

Okta, an authentication company used by thousands of organizations around the world, says it’s investigating news of a potential breach, Reuters reports.

The disclosure comes as hacking group Lapsus$ has posted screenshots to its Telegram channel..

...claiming to be of Okta’s internal systems, including one that appears to show Okta’s Slack channels, and another with a Cloudflare interface.

Any hack of Okta could have major ramifications for the companies, universities, and government agencies that depend upon Okta to authenticate user access to internal systems.

Writing in its Telegram channel, Lapsus$ claims to have had “Superuser/Admin” access to Okta’s systems for two months, but said its focus was “only on Okta customers.”

The Wall Street Journal notes that in a recent filing Okta said it had over 15,000 customers around the world. It lists the likes of Peloton, Sonos, T-Mobile, and the FCC as customers on its website.