Okta, the leading provider of authentication services, has confirmed that its private GitHub repositories were hacked this month. Hackers also managed to steal Okta’s source code. The company sent a ‘confidential’ notification accessed by BleepingComputer who first reported the incident.
Okta was alerted by GitHub about the suspicious access to Okta’s code repositories earlier this month. Then the company started investigating the issue. Okta claims that there is no impact on any customers.
“There is no impact to any customers, including any HIPAA, FedRAMP or DoD customers,” the company said in a public statement.
Okta reviewed the repositories to ensure the hacker made no changes in the code. It has already rotated GitHub credentials and informed law enforcement of the development.
2022 was a difficult year for Okta. The LAPSUS$ data extortion group hacked the company’s internal systems in January 2022. IN August 2022, 0ktapus campaign launched to steal users’ Okta identity credentials and two-factor authentication (2FA) codes.
Related Posts
