This post was originally published on this site
Identity management software company Okta Inc. has found no evidence of continuing malicious activity after hackers circulated images they said were of the company’s internal systems.
Okta
OKTA,
said Tuesday that a series of screenshots circulated online appear to be connected to a security event in late January, when the company detected an attempt to compromise the account of a third-party customer support engineer working for one of its subprocessers. That matter was investigated and contained by the subprocesser, Okta said.
“Based on our investigation to date, there is no evidence of ongoing malicious activity beyond the activity detected in January,” Okta said. “We believe the screenshots shared online are connected to this January event.”
Okta’s investigation comes after the hacking group LAPSUS$ posted screenshots on Telegram that it said showed the group’s access to Okta.com’s admin and other systems. The images were circulated on other forums including Twitter.
More than 15,000 customers, including companies, universities and government agencies around the world, use Okta services to secure and manage identities, San Francisco-based Okta said in a recent filing.
Write to Ben Otto at ben.otto@wsj.com
