#okta — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #okta, aggregated by home.social.
-
SCIM (System for Cross-domain Identity Management: RFCs 7643 & 7644) is the standard way for an identity provider like #Okta or Azure AD to push users and groups into your application: who joined, who got deactivated, who got added to which group.
-
#UNC6783 extortionist hackers impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data, #Google warns.
Read: https://hackread.com/unc6783-hackers-fake-okta-pages-corporate-breach/
-
@[email protected]
On the plus side, step #1 of setting up things like an #AWS/#Azure/#GCP account — especially production ones — is to disable the ability to create IAM users (forcing the use of IAM-roles that are 2FA authenticated via a service like #Okta) …and the role-based authentication-tokens are typically TTLed to a couple hours.
Still, a "good" (suspicious-quotes) agent-setup would be pretty trivial to configure to snarf credentials from the relevant token-services. That triviality likely applies more broadly. -
Part of my #Monday work ritual is giving the ol' work laptop a refresh, which means shutting it down completely and powering it back on. But then it runs like slow ass, so I have to give it a reboot and then it's fine. Then once I log in with #Okta 853 times to get #Zscaler authenticated I'm off and running!
Gotta love #SSO.
-
ShinyHunters claims Okta customer breaches, leaks data belonging to 3 orgs
#ShinyHunters #Okta
https://www.theregister.com/2026/01/23/shinyhunters_claims_okta_customer_breaches/ -
Okta, for an authentication system, has so many rough edges and bad user experiences.
In the portal, and click the Sign Out button? Yeah, doesn't do anything.
Already logged in, but touching something that requires 2FA? Tell the user that, and give them options on what 2FA to trigger.
My org doesn't allow Windows Hello, so if I login with that, having Okta Verify pop up, with a big "Windows Hello confirmation <disabled>" doesn't help me, I can't use that to 2FA.
-
Passwordless is finally happening, and users barely notice https://www.helpnetsecurity.com/2025/12/16/okta-mfa-security-shift-report/ #identitymanagement #authentication #cybersecurity #passwordless #report #News #Okta #MFA
-
Oktane starts in two hours. Enough time for breakfast.
Good morning!
-
Who of you fine folks will be visiting Oktane on the Road in Hannover this Wednesday?
-
👨💻🔐 Oh look, another enthralling tale of #AI slop from the tech wizards at #Okta, where #OAuth #vulnerabilities are as common as JavaScript frameworks. Apparently, injecting parameters into their #nextjs0auth project was so simple, even a chatbot could have written the patch. 🚀✨
https://joshua.hu/ai-slop-okta-nextjs-0auth-security-vulnerability #TechNews #HackerNews #ngated -
OktaでSalesforceをSAML連携させてシングルサインオン(SSO)してみた #okta
https://dev.classmethod.jp/articles/okta-salesforce-saml-sso-okta-kdpn/ -
Auth0’s developer trust is fading fast.
Support delays, unpredictable costs, and forced migrations have made 2025 tough for SaaS teams relying on it.
🔧 SSOJet gives you a simpler path — add enterprise SSO on top of Auth0 (or any IDP), keep your stack, and pay flat-rate pricing.
Devs deserve reliability, not chaos.
🔗 Read the full blog: Auth0 Support After Okta: What Developers Are Saying in 2025
-
Understanding Okta: A Complete Guide to Modern Identity and Access Management
https://www.xtivia.com/blog/understanding-okta-complete-guide-to-modern-identity-and-access-management/
#okta -
Interesting 🤔 Security leaders at #Okta and #Zscaler share lessons from Salesloft Drift attacks
https://cyberscoop.com/okta-zscaler-security-leaders-salesloft-drift-attacks/ #Infosec
-
North Korea’s IT workers are targeting firms beyond tech, crypto, and the U.S. https://www.helpnetsecurity.com/2025/10/01/north-korea-it-workers-worldwide/ #softwaredevelopment #financialindustry #insiderthreat #remoteworking #government #healthcare #NorthKorea #Don'tmiss #Australia #Singapore #Hotstuff #Germany #Canada #Europe #India #Japan #News #Okta #tips #USA #AI #UK
-
New VoidProxy Phishing Service Bypasses MFA on Microsoft and Google Accounts https://hackread.com/voidproxy-phishing-service-bypasses-mfa-microsoft-google/ #Cybersecurity #PhishingScam #CyberAttack #Microsoft #VoidProxy #Security #Phishing #security #Google #PhaaS #AitM #Okta #MFA
-
Purple Teaming Okta Detection Virtual Workshop happening this Wednesday!
Join other security engineers and SOC analysts for practical Okta detection engineering on September 3rd.
You'll get live demonstrations of Okta log ingestion, hands-on experience building custom detection rules for identity threats, and the chance to test your detections with adversary emulation tools in individual lab environments.
Stop relying on rigid vendor solutions and start building detection capabilities tailored to your environment.
-
Less than a week left to register for our Purple Team Okta Detection Workshop!
Don't miss your chance to build real-world Okta detection capabilities using our SecOps Cloud Platform on September 3rd.
In this hands-on workshop, you'll learn to detect suspicious logins, privilege escalation, MFA bypasses, and more using your own dedicated lab environment.
Ready to take control of your identity security stack?
Save your seat: https://limacharlie.wistia.com/live/events/jwwf4pqdar?utm_campaign=virtual+workshop+9+2025&utm_source=mastodon&utm_medium=email
-
Join us September 3rd for a virtual purple team workshop where you'll master Okta log integration and detection engineering on the LimaCharlie SecOps Cloud Platform.
What you'll build:
✓ Seamless Okta log ingestion pipelines
✓ Custom detections for suspicious logins, privilege escalation and MFA bypasses
✓ Validated detection rules using open-source adversary emulation tools
✓ Real-world purple team scenarios in your own dedicated lab environmentIdeal for security engineers, SOC analysts, and anyone serious about identity threat detection. You'll work hands-on in your own individual lab built with free and open-source tools in this live, unrecorded session.
Break free from vendor lock-in and build custom detection capabilities you actually need.
-
Okta just flipped the script on cybersecurity by open-sourcing its Auth0 Rules Catalog. Imagine a community-powered playbook that spots threats before they strike—ready to change the game? Check out how this could redefine defense.
-
Mapping Mayhem: Security’s Blind Spots in Identity Security – Source: securityboulevard.com https://ciso2ciso.com/mapping-mayhem-securitys-blind-spots-in-identity-security-source-securityboulevard-com/ #IdentityandAccessManagement #SecurityBoulevard(Original) #rssfeedpostgeneratorecho #CyberSecurityNews #SecurityBoulevard #identitysecurity #SocialFacebook #SocialLinkedIn #SpecterOps #Spotlight #FEATURED #Security #SocialX #Okta
-
Okta Access RequestsのRequest TypeからOkta Workflowを呼び出して実行してみた
https://dev.classmethod.jp/articles/okta-access-requests-request-type-okta-workflow/ -
Okta Access Requests v1 API を使ってRequest Typeを作成してみた
https://dev.classmethod.jp/articles/okta-access-requests-v1-api-request-type/ -
Photos: Infosecurity Europe 2025 https://www.helpnetsecurity.com/2025/06/03/infosecurity-europe-2025-photos/ #conferences #Defense.com #Darktrace #EasyDMARC #PlexTrac #CYREBRO #Insight #Tines #News #ISC2 #Okta #Torq
-
A Day in the Life of a Prolific Voice Phishing Crew
https://krebsonsecurity.com/2025/01/a-day-in-the-life-of-a-prolific-voice-phishing-crew/
#ALittleSunshine #CryptoChameleon #LatestWarnings #TheComingStorm #voicephishing #800-275-2273 #AllisonNixon #WebFraud2.0 #domaintools #autodoxers #Aristotle #MarkCuban #SharkTank #StarFraud #Coinbase #telegram #Unit221B #Discord #Lookout #Stotle #Trezor #Okta #Perm
-
A Day in the Life of a Prolific Voice Phishing Crew https://krebsonsecurity.com/2025/01/a-day-in-the-life-of-a-prolific-voice-phishing-crew/ #ALittleSunshine #CryptoChameleon #LatestWarnings #TheComingStorm #voicephishing #800-275-2273 #AllisonNixon #WebFraud2.0 #domaintools #autodoxers #Aristotle #MarkCuban #SharkTank #StarFraud #Coinbase #telegram #Unit221B #Discord #Lookout #Stotle #Trezor #Okta #Perm
-
Infosec products of the month: October 2024 https://www.helpnetsecurity.com/2024/11/01/infosec-products-of-the-month-october-2024/ #NucleusSecurity #LegitSecurity #VeeamSoftware #SAFESecurity #DataTheorem #GitGuardian #BreachLock #SECURITIai #Commvault #Dashlane #ExtraHop #Frontegg #Action1 #Metomic #Nametag #Sectigo #XMCyber #Balbix #Fastly #Ivanti #Kusari #Qualys #Rubrik #Edgio #Jumio #News #Neon #Okta #IBM
-
Infosec products of the month: October 2024 https://www.helpnetsecurity.com/2024/11/01/infosec-products-of-the-month-october-2024/ #NucleusSecurity #LegitSecurity #VeeamSoftware #SAFESecurity #DataTheorem #GitGuardian #BreachLock #SECURITIai #Commvault #Dashlane #ExtraHop #Frontegg #Action1 #Metomic #Nametag #Sectigo #XMCyber #Balbix #Fastly #Ivanti #Kusari #Qualys #Rubrik #Edgio #Jumio #News #Neon #Okta #IBM
-
Infosec products of the month: October 2024 https://www.helpnetsecurity.com/2024/11/01/infosec-products-of-the-month-october-2024/ #NucleusSecurity #LegitSecurity #VeeamSoftware #SAFESecurity #DataTheorem #GitGuardian #BreachLock #SECURITIai #Commvault #Dashlane #ExtraHop #Frontegg #Action1 #Metomic #Nametag #Sectigo #XMCyber #Balbix #Fastly #Ivanti #Kusari #Qualys #Rubrik #Edgio #Jumio #News #Neon #Okta #IBM
-
Infosec products of the month: October 2024 https://www.helpnetsecurity.com/2024/11/01/infosec-products-of-the-month-october-2024/ #NucleusSecurity #LegitSecurity #VeeamSoftware #SAFESecurity #DataTheorem #GitGuardian #BreachLock #SECURITIai #Commvault #Dashlane #ExtraHop #Frontegg #Action1 #Metomic #Nametag #Sectigo #XMCyber #Balbix #Fastly #Ivanti #Kusari #Qualys #Rubrik #Edgio #Jumio #News #Neon #Okta #IBM
-
New infosec products of the week: October 18, 2024 https://www.helpnetsecurity.com/2024/10/18/new-infosec-products-of-the-week-october-18-2024/ #GitGuardian #ExtraHop #Nametag #Sectigo #Rubrik #News #Okta
-
New infosec products of the week: October 18, 2024 https://www.helpnetsecurity.com/2024/10/18/new-infosec-products-of-the-week-october-18-2024/ #GitGuardian #ExtraHop #Nametag #Sectigo #Rubrik #News #Okta
-
New infosec products of the week: October 18, 2024 https://www.helpnetsecurity.com/2024/10/18/new-infosec-products-of-the-week-october-18-2024/ #GitGuardian #ExtraHop #Nametag #Sectigo #Rubrik #News #Okta
-
SF tech company Okta, worth $14B, accused of retaliatory layoffs
https://www.sfgate.com/tech/article/okta-lawsuit-gender-retaliatory-layoffs-19489065.php #womenintech #techindustry #techbros #okta #techcompany -
#ConnId bundle releases: #LDAP 1.5.9 / #Okta 3.0.3 / #SCIM 1.0.4 https://groups.google.com/g/connid-users/c/LJ1t64dd6r8/m/XbJ9J8K1AAAJ #OpenSource #provisioning
-
Couldn't log in to our #MagnetForensics account for some weeks. Password reset online not possible, it's advised to use the phone for it (wtf). Decided to try an e-mail and had success. After 15min we got a temp password and were back in.
As we did not change our pw and simply were locked out and because of the strange pw reset procedure I asked if Magnet is affected by the #Okta breach. If pw's or hashes were compromised.
No f*cking answer in 2 days. That stinks!
-
#1Password zwingt einen seit v.8 in die #Cloud
Nun lese ich #Cyberangriff #okta in diesem Zusammenhang
https://www.inside-it.ch/1password-von-okta-hack-betroffen-20231024 🤨Export von #1P v.8 und #Migration schwierig, aber geht!
Anleitung „Migrating from 1Password to #KeePass, #KeePassXC and #KeePassium“
https://keepassium.com/articles/migrating-from-1password-to-keepass-keepassxc-keepassium/1/2
-
#1Password zwingt einen seit v.8 in die #Cloud
Nun lese ich #Cyberangriff #okta in diesem Zusammenhang
https://www.inside-it.ch/1password-von-okta-hack-betroffen-20231024 🤨Export von #1P v.8 und #Migration daher schwierig, aber geht!
Anleitung „Migrating from 1Password to #KeePass, #KeePassXC and #KeePassium“
https://keepassium.com/articles/migrating-from-1password-to-keepass-keepassxc-keepassium/1/2
-
#1Password zwingt einen seit v.8 in die #Cloud
Nun lese ich #Cyberangriff #okta in diesem Zusammenhang
https://www.inside-it.ch/1password-von-okta-hack-betroffen-20231024 🤨Export von #1P v.8 und #Migration schwierig, aber geht!
Anleitung „Migrating from 1Password to #KeePass, #KeePassXC and #KeePassium“
https://keepassium.com/articles/migrating-from-1password-to-keepass-keepassxc-keepassium/1/2
-
#1Password zwingt einen seit v.8 in die #Cloud
Nun lese ich #Cyberangriff #okta in diesem Zusammenhang
https://www.inside-it.ch/1password-von-okta-hack-betroffen-20231024 🤨Export von #1P v.8 und #Migration daher schwierig, aber geht!
Anleitung „Migrating from 1Password to #KeePass, #KeePassXC and #KeePassium“
https://keepassium.com/articles/migrating-from-1password-to-keepass-keepassxc-keepassium/1/2
-
#1Password zwingt einen seit v.8 in die #Cloud
Nun lese ich #Cyberangriff #okta in diesem Zusammenhang
https://www.inside-it.ch/1password-von-okta-hack-betroffen-20231024 🤨Export von #1P v.8 und #Migration schwierig, aber geht!
Anleitung „Migrating from 1Password to #KeePass, #KeePassXC and #KeePassium“
https://keepassium.com/articles/migrating-from-1password-to-keepass-keepassxc-keepassium/1/2
-
The Latest Okta Support Team Breach
~~
Should you stop using Okta ~ or alternatively ~ what can you do to protect yourself?
~~
#okta #breach #security #iam #support #HAR #microsoft #entraidhttps://medium.com/cloud-security/the-latest-okta-support-team-breach-b1b3653ef722
-
😅 In light of everything with #Okta and @1password, I'm interested again in good tools for sanitizing and analyzing #HAR files and open to recommendations. #cybersecurity
🔏 1Password's Report: https://blog.1password.com/files/okta-incident/okta-incident-report.pdf
✍️ Okta's Note: https://sec.okta.com/harfiles -
1Password discloses security incident linked to Okta breach
https://www.bleepingcomputer.com/news/security/1password-discloses-security-incident-linked-to-okta-breach/
#ycombinator #computers #windows #linux #mac #support #tech_support #spyware #malware #virus #security #1Password #Cyberattack #Identity_Provider #Okta #Password_Manager #Security_Breach #virus_removal #malware_removal #computer_help #technical_support -
1Password detects “suspicious activity” in its internal Okta account - Enlarge (credit: 1Password)
1Password, a password manager used... - https://arstechnica.com/?p=1978094 #unauthorizedaccess #1password #security #biz #okta
