#okta — Public Fediverse posts
Live and recent posts from across the Fediverse tagged #okta, aggregated by home.social.
-
#TechIsShitDispatch
Let's talk about the overflowing wheelbarrow of shit I recently encountered while reinstalling a whole bunch of apps onto my #Android phone after deleting them for privacy reasons before going through customs. Buckle up, it's a wild ride.
#Signal #K9Mail #Slack #2FAS #Okta #Vivaldi #Microsoft #Wise #YubiKey #Synology #Jetpack #Automattic #Wordpress #LinkedIn
1/24 -
#TechIsShitDispatch
Let's talk about the overflowing wheelbarrow of shit I recently encountered while reinstalling a whole bunch of apps onto my #Android phone after deleting them for privacy reasons before going through customs. Buckle up, it's a wild ride.
#Signal #K9Mail #Slack #2FAS #Okta #Vivaldi #Microsoft #Wise #YubiKey #Synology #Jetpack #Automattic #Wordpress #LinkedIn
1/24 -
I would like to thank Mythos for my having to perform multi-factor gymnastics every day for every work mobile app:
* Please re-authenticate
* User ID
* BeyondIdentity Challenge (which never works)
* Open BI QR Code
* Screen Shot QR Code
* Open in Work Side Photos app
* Google Lens to read the QR code and turn into a URL
* Open the URL
* Approve BI
* Challenged with my phone's 8 digit PIN
* Challenged by Okta
* Accept the Okta Notification
* What was I just trying to do? -
I would like to thank Mythos for my having to perform multi-factor gymnastics every day for every work mobile app:
* Please re-authenticate
* User ID
* BeyondIdentity Challenge (which never works)
* Open BI QR Code
* Screen Shot QR Code
* Open in Work Side Photos app
* Google Lens to read the QR code and turn into a URL
* Open the URL
* Approve BI
* Challenged with my phone's 8 digit PIN
* Challenged by Okta
* Accept the Okta Notification
* What was I just trying to do? -
🗽 I’ve just returned from a vacation in New York.
🤖 And I brought back something unexpected: not souvenirs, but a very concrete reflection on where we really are with AI.
🌃 In Times Square, next to Coca-Cola and Samsung, there was an ad for an AI platform.
In cafés, from Starbucks to Gregorys, anyone with an open laptop — students, developers, journalists — was interacting with Claude, Copilot or ChatGPT.
Not as a novelty. As normality.In the US, AI has already crossed the cultural point of no return.
📊 The data confirms it: 41% of American workers use GenAI for professional purposes, compared to ~20% of European companies. And the gap is even wider between large enterprises (55%) and SMEs (17%).
In my new article, I talk about:
🏙️ What I saw in Times Square and Manhattan cafés
📈 The real data behind the US vs Europe gap
⚠️ Shadow AI: why uncontrolled growth is the most underestimated risk
🔐 How governance and identity management are becoming the key to adopting AI sustainably🔗 Read the blog post here: https://iam.fabiograsso.net/blog/okta-ai-newyork/?utm_source=infosec.exchange&utm_medium=social&utm_campaign=2026q2_masto_push&utm_content=p16_okta_ai_newyork
Are you already governing AI agents in your organization? Or are you still in the “let’s try and see what happens” phase? Where do you see the biggest AI governance gap in your organization today?
-
🗽 I’ve just returned from a vacation in New York.
🤖 And I brought back something unexpected: not souvenirs, but a very concrete reflection on where we really are with AI.
🌃 In Times Square, next to Coca-Cola and Samsung, there was an ad for an AI platform.
In cafés, from Starbucks to Gregorys, anyone with an open laptop — students, developers, journalists — was interacting with Claude, Copilot or ChatGPT.
Not as a novelty. As normality.In the US, AI has already crossed the cultural point of no return.
📊 The data confirms it: 41% of American workers use GenAI for professional purposes, compared to ~20% of European companies. And the gap is even wider between large enterprises (55%) and SMEs (17%).
In my new article, I talk about:
🏙️ What I saw in Times Square and Manhattan cafés
📈 The real data behind the US vs Europe gap
⚠️ Shadow AI: why uncontrolled growth is the most underestimated risk
🔐 How governance and identity management are becoming the key to adopting AI sustainably🔗 Read the blog post here: https://iam.fabiograsso.net/blog/okta-ai-newyork/?utm_source=infosec.exchange&utm_medium=social&utm_campaign=2026q2_masto_push&utm_content=p16_okta_ai_newyork
Are you already governing AI agents in your organization? Or are you still in the “let’s try and see what happens” phase? Where do you see the biggest AI governance gap in your organization today?
-
SCIM (System for Cross-domain Identity Management: RFCs 7643 & 7644) is the standard way for an identity provider like #Okta or Azure AD to push users and groups into your application: who joined, who got deactivated, who got added to which group.
-
Okta Verify macht Biometrie-Pflicht durchsetzbar und behebt Registrierungslücken direkt im Anmeldevorgang
Administratoren können biometrische Authentifizierung verbindlich in Anmelderichtlinien festschreiben, und zwar differenziert nach Anwendung. Fehlt einem Nutzer die dafür notwendige Registrierung, greift automatisch ein Inline-Korrekturmechanismus – ohne Fehlermeldung, ohne Abbruch, ohne Support-Ticket.
-
Shadow AI Agents Emerge as Hidden Risk in Enterprises
As companies rush to adopt AI, a hidden risk is emerging: shadow AI agents operating outside of traditional IT control, leaving many organizations in the dark about where they exist, what they're connected to, and what actions they're taking. This growing visibility gap poses a significant operational risk, driven by teams experimenting…
#ArtificialIntelligence #ShadowAiAgents #EnterpriseRisk #EmergingThreats #Okta
-
#UNC6783 extortionist hackers impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data, #Google warns.
Read: https://hackread.com/unc6783-hackers-fake-okta-pages-corporate-breach/
-
#UNC6783 extortionist hackers impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data, #Google warns.
Read: https://hackread.com/unc6783-hackers-fake-okta-pages-corporate-breach/
-
¿Por qué caen las acciones de Okta tras resultados positivos? Okta impresiona con sus ganancias, pero una previsión débil y la inteligencia artificial generan dudas entre los inversores. https://sagaroja.com/es/blog/empresas/okta-resultados-prevision-debil #Okta #Ciberseguridad #Accionestecnolgicas
-
Okta (OKTA) Q4 2026 earnings
https://misryoum.com/us/economy/okta-okta-q4-2026-earnings
Todd McKinnon, chief executive officer of Okta Inc., during a Bloomberg Television interview, in London, UK, on Friday, April 11, 2025. Chris J. Ratcliffe | Bloomberg | Getty ImagesOkta topped Wall Street's fourth-quarter estimates after the bell on Wednesday as...
-
@[email protected]
On the plus side, step #1 of setting up things like an #AWS/#Azure/#GCP account — especially production ones — is to disable the ability to create IAM users (forcing the use of IAM-roles that are 2FA authenticated via a service like #Okta) …and the role-based authentication-tokens are typically TTLed to a couple hours.
Still, a "good" (suspicious-quotes) agent-setup would be pretty trivial to configure to snarf credentials from the relevant token-services. That triviality likely applies more broadly. -
@[email protected]
On the plus side, step #1 of setting up things like an #AWS/#Azure/#GCP account — especially production ones — is to disable the ability to create IAM users (forcing the use of IAM-roles that are 2FA authenticated via a service like #Okta) …and the role-based authentication-tokens are typically TTLed to a couple hours.
Still, a "good" (suspicious-quotes) agent-setup would be pretty trivial to configure to snarf credentials from the relevant token-services. That triviality likely applies more broadly. -
Part of my #Monday work ritual is giving the ol' work laptop a refresh, which means shutting it down completely and powering it back on. But then it runs like slow ass, so I have to give it a reboot and then it's fine. Then once I log in with #Okta 853 times to get #Zscaler authenticated I'm off and running!
Gotta love #SSO.
-
Part of my #Monday work ritual is giving the ol' work laptop a refresh, which means shutting it down completely and powering it back on. But then it runs like slow ass, so I have to give it a reboot and then it's fine. Then once I log in with #Okta 853 times to get #Zscaler authenticated I'm off and running!
Gotta love #SSO.
-
📰 ShinyHunters Claims Breach of Crunchbase, Betterment via Okta Vishing Attacks
Cybercrime group ShinyHunters claims to have breached Crunchbase & Betterment by using voice phishing (vishing) to bypass Okta SSO. 📞 The attack highlights the risk of non-phishing-resistant MFA. #Vishing #ShinyHunters #Okta #CyberSecurity
-
📰 ShinyHunters Claims Breach of Crunchbase, Betterment via Okta Vishing Attacks
Cybercrime group ShinyHunters claims to have breached Crunchbase & Betterment by using voice phishing (vishing) to bypass Okta SSO. 📞 The attack highlights the risk of non-phishing-resistant MFA. #Vishing #ShinyHunters #Okta #CyberSecurity
-
ShinyHunters claims Okta customer breaches, leaks data belonging to 3 orgs
#ShinyHunters #Okta
https://www.theregister.com/2026/01/23/shinyhunters_claims_okta_customer_breaches/ -
ShinyHunters claims Okta customer breaches, leaks data belonging to 3 orgs
#ShinyHunters #Okta
https://www.theregister.com/2026/01/23/shinyhunters_claims_okta_customer_breaches/ -
ShinyHunters has claimed responsibility for the Okta vishing campaign and alleges it leaked data from Crunchbase, SoundCloud, and Betterment after failed extortion attempts, warning more disclosures are coming.
Live phone calls + real-time phishing pages allow attackers to control authentication flows.
Is phishing-resistant MFA now mandatory?
-
Okta, for an authentication system, has so many rough edges and bad user experiences.
In the portal, and click the Sign Out button? Yeah, doesn't do anything.
Already logged in, but touching something that requires 2FA? Tell the user that, and give them options on what 2FA to trigger.
My org doesn't allow Windows Hello, so if I login with that, having Okta Verify pop up, with a big "Windows Hello confirmation <disabled>" doesn't help me, I can't use that to 2FA.
-
Passwordless is finally happening, and users barely notice https://www.helpnetsecurity.com/2025/12/16/okta-mfa-security-shift-report/ #identitymanagement #authentication #cybersecurity #passwordless #report #News #Okta #MFA
-
Passwordless is finally happening, and users barely notice https://www.helpnetsecurity.com/2025/12/16/okta-mfa-security-shift-report/ #identitymanagement #authentication #cybersecurity #passwordless #report #News #Okta #MFA
-
Okta is pouring resources into R&D, expanding its Bengaluru AI hub and planning a 50% staff boost in India by 2026. The move, championed by Shakeel Khan, aims to accelerate product development and strengthen identity‑management solutions. Curious how this will reshape the cloud‑security landscape? Read on for the full story. #Okta #AI #Bengaluru #India
🔗 https://aidailypost.com/news/okta-invest-rd-expand-bengaluru-ai-hub-grow-india-staff-50-by-2026
-
👨💻🔐 Oh look, another enthralling tale of #AI slop from the tech wizards at #Okta, where #OAuth #vulnerabilities are as common as JavaScript frameworks. Apparently, injecting parameters into their #nextjs0auth project was so simple, even a chatbot could have written the patch. 🚀✨
https://joshua.hu/ai-slop-okta-nextjs-0auth-security-vulnerability #TechNews #HackerNews #ngated -
👨💻🔐 Oh look, another enthralling tale of #AI slop from the tech wizards at #Okta, where #OAuth #vulnerabilities are as common as JavaScript frameworks. Apparently, injecting parameters into their #nextjs0auth project was so simple, even a chatbot could have written the patch. 🚀✨
https://joshua.hu/ai-slop-okta-nextjs-0auth-security-vulnerability #TechNews #HackerNews #ngated -
OktaでSalesforceをSAML連携させてシングルサインオン(SSO)してみた #okta
https://dev.classmethod.jp/articles/okta-salesforce-saml-sso-okta-kdpn/ -
Understanding Okta: A Complete Guide to Modern Identity and Access Management
https://www.xtivia.com/blog/understanding-okta-complete-guide-to-modern-identity-and-access-management/
#okta -
Understanding Okta: A Complete Guide to Modern Identity and Access Management
https://www.xtivia.com/blog/understanding-okta-complete-guide-to-modern-identity-and-access-management/
#okta -
Interesting 🤔 Security leaders at #Okta and #Zscaler share lessons from Salesloft Drift attacks
https://cyberscoop.com/okta-zscaler-security-leaders-salesloft-drift-attacks/ #Infosec
-
Interesting 🤔 Security leaders at #Okta and #Zscaler share lessons from Salesloft Drift attacks
https://cyberscoop.com/okta-zscaler-security-leaders-salesloft-drift-attacks/ #Infosec
-
North Korea’s IT workers are targeting firms beyond tech, crypto, and the U.S. https://www.helpnetsecurity.com/2025/10/01/north-korea-it-workers-worldwide/ #softwaredevelopment #financialindustry #insiderthreat #remoteworking #government #healthcare #NorthKorea #Don'tmiss #Australia #Singapore #Hotstuff #Germany #Canada #Europe #India #Japan #News #Okta #tips #USA #AI #UK
-
North Korea’s IT workers are targeting firms beyond tech, crypto, and the U.S. https://www.helpnetsecurity.com/2025/10/01/north-korea-it-workers-worldwide/ #softwaredevelopment #financialindustry #insiderthreat #remoteworking #government #healthcare #NorthKorea #Don'tmiss #Australia #Singapore #Hotstuff #Germany #Canada #Europe #India #Japan #News #Okta #tips #USA #AI #UK
-
New VoidProxy Phishing Service Bypasses MFA on Microsoft and Google Accounts https://hackread.com/voidproxy-phishing-service-bypasses-mfa-microsoft-google/ #Cybersecurity #PhishingScam #CyberAttack #Microsoft #VoidProxy #Security #Phishing #security #Google #PhaaS #AitM #Okta #MFA
-
Purple Teaming Okta Detection Virtual Workshop happening this Wednesday!
Join other security engineers and SOC analysts for practical Okta detection engineering on September 3rd.
You'll get live demonstrations of Okta log ingestion, hands-on experience building custom detection rules for identity threats, and the chance to test your detections with adversary emulation tools in individual lab environments.
Stop relying on rigid vendor solutions and start building detection capabilities tailored to your environment.
-
Less than a week left to register for our Purple Team Okta Detection Workshop!
Don't miss your chance to build real-world Okta detection capabilities using our SecOps Cloud Platform on September 3rd.
In this hands-on workshop, you'll learn to detect suspicious logins, privilege escalation, MFA bypasses, and more using your own dedicated lab environment.
Ready to take control of your identity security stack?
Save your seat: https://limacharlie.wistia.com/live/events/jwwf4pqdar?utm_campaign=virtual+workshop+9+2025&utm_source=mastodon&utm_medium=email
-
Join us September 3rd for a virtual purple team workshop where you'll master Okta log integration and detection engineering on the LimaCharlie SecOps Cloud Platform.
What you'll build:
✓ Seamless Okta log ingestion pipelines
✓ Custom detections for suspicious logins, privilege escalation and MFA bypasses
✓ Validated detection rules using open-source adversary emulation tools
✓ Real-world purple team scenarios in your own dedicated lab environmentIdeal for security engineers, SOC analysts, and anyone serious about identity threat detection. You'll work hands-on in your own individual lab built with free and open-source tools in this live, unrecorded session.
Break free from vendor lock-in and build custom detection capabilities you actually need.
-
Okta just flipped the script on cybersecurity by open-sourcing its Auth0 Rules Catalog. Imagine a community-powered playbook that spots threats before they strike—ready to change the game? Check out how this could redefine defense.
-
Mapping Mayhem: Security’s Blind Spots in Identity Security – Source: securityboulevard.com https://ciso2ciso.com/mapping-mayhem-securitys-blind-spots-in-identity-security-source-securityboulevard-com/ #IdentityandAccessManagement #SecurityBoulevard(Original) #rssfeedpostgeneratorecho #CyberSecurityNews #SecurityBoulevard #identitysecurity #SocialFacebook #SocialLinkedIn #SpecterOps #Spotlight #FEATURED #Security #SocialX #Okta