The files belonging to 134 consumers were also accessed by threat actors who broke into the Okta customer care system. The company disclosed that files belonging to 134 customers were accessed by threat actors who broke into the Okta customer care system in October.
The attackers were able to access some HAR files that included session tokens. The business claims that the threat actor was able to take over five customers’ authentic Okta sessions by using these session tokens. Threat actors gained access to the Cloud identity and access management solutions provider’s support case management system in October, stealing authentication data, including cookies and session tokens, which might be used in future attacks to impersonate legitimate users.