- cross-posted to:
- hackernews@lemmy.smeargle.fans
- cross-posted to:
- hackernews@lemmy.smeargle.fans
Okta, a company that provides identity tools like multi-factor authentication and single sign-on to thousands of businesses, has suffered a security breach involving a compromise of its customer support unit, KrebsOnSecurity has learned.
Cloudflare not impressed https://blog.cloudflare.com/how-cloudflare-mitigated-yet-another-okta-compromise/
Holy shit, this is absolutely beyond negligent for an authentication platform.
They need to be raked over the coals by the FTC and class actions.
And as a former admin for okta (as in admin access within a enterprise) I can also say their implementation can be a pain in the ass, especially if you adopt the system after someone else was fired for, in part, screwing it up.