Late Monday, Lapsus$ claimed it gained access to a number of Okta’s systems by posting screenshots on its Telegram channel. The hacker gang said it did not gain access to or steal any of Okta’s databases, instead focusing on gaining access to its customers.
The subprocessor looked into the situation and found a solution. We believe the screenshots circulated on the internet are related to the January incident. There is no evidence of ongoing malicious activity beyond what was found in January, based on our assessment thus far.