home.social

#okta — Public Fediverse posts

Live and recent posts from across the Fediverse tagged #okta, aggregated by home.social.

fetched live
  1. #TechIsShitDispatch
    Let's talk about the overflowing wheelbarrow of shit I recently encountered while reinstalling a whole bunch of apps onto my #Android phone after deleting them for privacy reasons before going through customs. Buckle up, it's a wild ride.
    #Signal #K9Mail #Slack #2FAS #Okta #Vivaldi #Microsoft #Wise #YubiKey #Synology #Jetpack #Automattic #Wordpress #LinkedIn
    1/24

  2. #TechIsShitDispatch
    Let's talk about the overflowing wheelbarrow of shit I recently encountered while reinstalling a whole bunch of apps onto my #Android phone after deleting them for privacy reasons before going through customs. Buckle up, it's a wild ride.
    #Signal #K9Mail #Slack #2FAS #Okta #Vivaldi #Microsoft #Wise #YubiKey #Synology #Jetpack #Automattic #Wordpress #LinkedIn
    1/24

  3. I would like to thank Mythos for my having to perform multi-factor gymnastics every day for every work mobile app:

    * Please re-authenticate
    * User ID
    * BeyondIdentity Challenge (which never works)
    * Open BI QR Code
    * Screen Shot QR Code
    * Open in Work Side Photos app
    * Google Lens to read the QR code and turn into a URL
    * Open the URL
    * Approve BI
    * Challenged with my phone's 8 digit PIN
    * Challenged by Okta
    * Accept the Okta Notification
    * What was I just trying to do?

    #mythos #BeyondIdentity #Okta

  4. I would like to thank Mythos for my having to perform multi-factor gymnastics every day for every work mobile app:

    * Please re-authenticate
    * User ID
    * BeyondIdentity Challenge (which never works)
    * Open BI QR Code
    * Screen Shot QR Code
    * Open in Work Side Photos app
    * Google Lens to read the QR code and turn into a URL
    * Open the URL
    * Approve BI
    * Challenged with my phone's 8 digit PIN
    * Challenged by Okta
    * Accept the Okta Notification
    * What was I just trying to do?

    #mythos #BeyondIdentity #Okta

  5. 🗽 I’ve just returned from a vacation in New York.

    🤖 And I brought back something unexpected: not souvenirs, but a very concrete reflection on where we really are with AI.

    🌃 In Times Square, next to Coca-Cola and Samsung, there was an ad for an AI platform.
    In cafés, from Starbucks to Gregorys, anyone with an open laptop — students, developers, journalists — was interacting with Claude, Copilot or ChatGPT.
    Not as a novelty. As normality.

    In the US, AI has already crossed the cultural point of no return.

    📊 The data confirms it: 41% of American workers use GenAI for professional purposes, compared to ~20% of European companies. And the gap is even wider between large enterprises (55%) and SMEs (17%).

    In my new article, I talk about:
    🏙️ What I saw in Times Square and Manhattan cafés
    📈 The real data behind the US vs Europe gap
    ⚠️ Shadow AI: why uncontrolled growth is the most underestimated risk
    🔐 How governance and identity management are becoming the key to adopting AI sustainably

    🔗 Read the blog post here: iam.fabiograsso.net/blog/okta-

    Are you already governing AI agents in your organization? Or are you still in the “let’s try and see what happens” phase? Where do you see the biggest AI governance gap in your organization today?

    #AI #AISecurity #AIGovernance #IAM #Cybersecurity #Okta

  6. 🗽 I’ve just returned from a vacation in New York.

    🤖 And I brought back something unexpected: not souvenirs, but a very concrete reflection on where we really are with AI.

    🌃 In Times Square, next to Coca-Cola and Samsung, there was an ad for an AI platform.
    In cafés, from Starbucks to Gregorys, anyone with an open laptop — students, developers, journalists — was interacting with Claude, Copilot or ChatGPT.
    Not as a novelty. As normality.

    In the US, AI has already crossed the cultural point of no return.

    📊 The data confirms it: 41% of American workers use GenAI for professional purposes, compared to ~20% of European companies. And the gap is even wider between large enterprises (55%) and SMEs (17%).

    In my new article, I talk about:
    🏙️ What I saw in Times Square and Manhattan cafés
    📈 The real data behind the US vs Europe gap
    ⚠️ Shadow AI: why uncontrolled growth is the most underestimated risk
    🔐 How governance and identity management are becoming the key to adopting AI sustainably

    🔗 Read the blog post here: iam.fabiograsso.net/blog/okta-

    Are you already governing AI agents in your organization? Or are you still in the “let’s try and see what happens” phase? Where do you see the biggest AI governance gap in your organization today?

    #AI #AISecurity #AIGovernance #IAM #Cybersecurity #Okta

  7. SCIM (System for Cross-domain Identity Management: RFCs 7643 & 7644) is the standard way for an identity provider like #Okta or Azure AD to push users and groups into your application: who joined, who got deactivated, who got added to which group.

  8. Okta Verify macht Biometrie-Pflicht durchsetzbar und behebt Registrierungslücken direkt im Anmeldevorgang

    Administratoren können biometrische Authentifizierung verbindlich in Anmelderichtlinien festschreiben, und zwar differenziert nach Anwendung. Fehlt einem Nutzer die dafür notwendige Registrierung, greift automatisch ein Inline-Korrekturmechanismus – ohne Fehlermeldung, ohne Abbruch, ohne Support-Ticket.

    all-about-security.de/okta-ver

    #okta #biometrie #Authentifizierung

  9. Shadow AI Agents Emerge as Hidden Risk in Enterprises

    As companies rush to adopt AI, a hidden risk is emerging: shadow AI agents operating outside of traditional IT control, leaving many organizations in the dark about where they exist, what they're connected to, and what actions they're taking. This growing visibility gap poses a significant operational risk, driven by teams experimenting…

    osintsights.com/shadow-ai-agen

    #ArtificialIntelligence #ShadowAiAgents #EnterpriseRisk #EmergingThreats #Okta

  10. #UNC6783 extortionist hackers impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data, #Google warns.

    Read: hackread.com/unc6783-hackers-f

    #CyberSecurity #CyberCrime #Okta #Extortion #Scam

  11. #UNC6783 extortionist hackers impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data, #Google warns.

    Read: hackread.com/unc6783-hackers-f

    #CyberSecurity #CyberCrime #Okta #Extortion #Scam

  12. ¿Por qué caen las acciones de Okta tras resultados positivos? Okta impresiona con sus ganancias, pero una previsión débil y la inteligencia artificial generan dudas entre los inversores. sagaroja.com/es/blog/empresas/ #Okta #Ciberseguridad #Accionestecnolgicas

  13. I found a stock that has a worse P/E ratio than #Tesla or #Palantir

    I didn’t think it was possible, but #Okta has a P/E of 59,333.

    How has it not gone bust?!

  14. Okta (OKTA) Q4 2026 earnings

    misryoum.com/us/economy/okta-o

    Todd McKinnon, chief executive officer of Okta Inc., during a Bloomberg Television interview, in London, UK, on Friday, April 11, 2025. Chris J. Ratcliffe | Bloomberg | Getty ImagesOkta topped Wall Street's fourth-quarter estimates after the bell on Wednesday as...

    #Okta #US_Opinion #MISRYOUM

  15. @[email protected]

    On the plus side, step #1 of setting up things like an
    #AWS/#Azure/#GCP account — especially production ones — is to disable the ability to create IAM users (forcing the use of IAM-roles that are 2FA authenticated via a service like #Okta) …and the role-based authentication-tokens are typically TTLed to a couple hours.

    Still, a "good" (suspicious-quotes) agent-setup would be pretty trivial to configure to snarf credentials from the relevant token-services. That triviality likely applies more broadly.

  16. @[email protected]

    On the plus side, step #1 of setting up things like an
    #AWS/#Azure/#GCP account — especially production ones — is to disable the ability to create IAM users (forcing the use of IAM-roles that are 2FA authenticated via a service like #Okta) …and the role-based authentication-tokens are typically TTLed to a couple hours.

    Still, a "good" (suspicious-quotes) agent-setup would be pretty trivial to configure to snarf credentials from the relevant token-services. That triviality likely applies more broadly.

  17. "To start your certification process, please first install this random software on your corporate computer." -- Okta

    Yeaaaah, I'm sure InfoSec is going to LOVE that.

    #Okta #InfoSec

  18. "To start your certification process, please first install this random software on your corporate computer." -- Okta

    Yeaaaah, I'm sure InfoSec is going to LOVE that.

    #Okta #InfoSec

  19. Part of my #Monday work ritual is giving the ol' work laptop a refresh, which means shutting it down completely and powering it back on. But then it runs like slow ass, so I have to give it a reboot and then it's fine. Then once I log in with #Okta 853 times to get #Zscaler authenticated I'm off and running!

    Gotta love #SSO.

  20. Part of my #Monday work ritual is giving the ol' work laptop a refresh, which means shutting it down completely and powering it back on. But then it runs like slow ass, so I have to give it a reboot and then it's fine. Then once I log in with #Okta 853 times to get #Zscaler authenticated I'm off and running!

    Gotta love #SSO.

  21. 📰 ShinyHunters Claims Breach of Crunchbase, Betterment via Okta Vishing Attacks

    Cybercrime group ShinyHunters claims to have breached Crunchbase & Betterment by using voice phishing (vishing) to bypass Okta SSO. 📞 The attack highlights the risk of non-phishing-resistant MFA. #Vishing #ShinyHunters #Okta #CyberSecurity

    🔗 cyber.netsecops.io/articles/sh

  22. 📰 ShinyHunters Claims Breach of Crunchbase, Betterment via Okta Vishing Attacks

    Cybercrime group ShinyHunters claims to have breached Crunchbase & Betterment by using voice phishing (vishing) to bypass Okta SSO. 📞 The attack highlights the risk of non-phishing-resistant MFA. #Vishing #ShinyHunters #Okta #CyberSecurity

    🔗 cyber.netsecops.io/articles/sh

  23. ShinyHunters has claimed responsibility for the Okta vishing campaign and alleges it leaked data from Crunchbase, SoundCloud, and Betterment after failed extortion attempts, warning more disclosures are coming.

    Live phone calls + real-time phishing pages allow attackers to control authentication flows.

    🔗 technadu.com/okta-sso-accounts

    Is phishing-resistant MFA now mandatory?

    #Okta #Vishing #IdentitySecurity #MFA #InfoSec

  24. Okta, for an authentication system, has so many rough edges and bad user experiences.

    In the portal, and click the Sign Out button? Yeah, doesn't do anything.

    Already logged in, but touching something that requires 2FA? Tell the user that, and give them options on what 2FA to trigger.

    My org doesn't allow Windows Hello, so if I login with that, having Okta Verify pop up, with a big "Windows Hello confirmation <disabled>" doesn't help me, I can't use that to 2FA.

    #okta #badux

  25. Okta is pouring resources into R&D, expanding its Bengaluru AI hub and planning a 50% staff boost in India by 2026. The move, championed by Shakeel Khan, aims to accelerate product development and strengthen identity‑management solutions. Curious how this will reshape the cloud‑security landscape? Read on for the full story. #Okta #AI #Bengaluru #India

    🔗 aidailypost.com/news/okta-inve

  26. 👨‍💻🔐 Oh look, another enthralling tale of #AI slop from the tech wizards at #Okta, where #OAuth #vulnerabilities are as common as JavaScript frameworks. Apparently, injecting parameters into their #nextjs0auth project was so simple, even a chatbot could have written the patch. 🚀✨
    joshua.hu/ai-slop-okta-nextjs- #TechNews #HackerNews #ngated

  27. 👨‍💻🔐 Oh look, another enthralling tale of #AI slop from the tech wizards at #Okta, where #OAuth #vulnerabilities are as common as JavaScript frameworks. Apparently, injecting parameters into their #nextjs0auth project was so simple, even a chatbot could have written the patch. 🚀✨
    joshua.hu/ai-slop-okta-nextjs- #TechNews #HackerNews #ngated

  28. Purple Teaming Okta Detection Virtual Workshop happening this Wednesday!

    Join other security engineers and SOC analysts for practical Okta detection engineering on September 3rd.

    You'll get live demonstrations of Okta log ingestion, hands-on experience building custom detection rules for identity threats, and the chance to test your detections with adversary emulation tools in individual lab environments.

    Stop relying on rigid vendor solutions and start building detection capabilities tailored to your environment.

    Register: limacharlie.wistia.com/live/ev

    #cybersecurity #okta #threatdetection

  29. Anyone else going to be at Oktane in September?

    #oktane #okta #iam

  30. Less than a week left to register for our Purple Team Okta Detection Workshop!

    Don't miss your chance to build real-world Okta detection capabilities using our SecOps Cloud Platform on September 3rd.

    In this hands-on workshop, you'll learn to detect suspicious logins, privilege escalation, MFA bypasses, and more using your own dedicated lab environment.

    Ready to take control of your identity security stack?

    Save your seat: limacharlie.wistia.com/live/ev

    #cybersecurity #okta #threatdetection

  31. Join us September 3rd for a virtual purple team workshop where you'll master Okta log integration and detection engineering on the LimaCharlie SecOps Cloud Platform.

    What you'll build:

    ✓ Seamless Okta log ingestion pipelines
    ✓ Custom detections for suspicious logins, privilege escalation and MFA bypasses
    ✓ Validated detection rules using open-source adversary emulation tools
    ✓ Real-world purple team scenarios in your own dedicated lab environment

    Ideal for security engineers, SOC analysts, and anyone serious about identity threat detection. You'll work hands-on in your own individual lab built with free and open-source tools in this live, unrecorded session.

    Break free from vendor lock-in and build custom detection capabilities you actually need.

    Register now: limacharlie.wistia.com/live/ev

    #cybersecurity #okta #threatdetection

  32. Okta just flipped the script on cybersecurity by open-sourcing its Auth0 Rules Catalog. Imagine a community-powered playbook that spots threats before they strike—ready to change the game? Check out how this could redefine defense.

    thedefendopsdiaries.com/oktas-

    #okta
    #cybersecurity
    #opensource
    #threatdetection
    #auth0

  33. etc:

    "we provide perfect endpoint security by committing only 10 of the worst sins"