Yesterday was not a great day for Okta. Their CSO, David Bradbury, issued a statement responding to Lapsus$’s claimed hack, but his statement led to a counter-response by Lapsus$ and even more critically, perhaps, people started asking why, if Okta knew about something in January, they had not disclosed it then. First, here’s Bradbury’s statement:…
Category: Hack
Microsoft confirms they were hacked by Lapsus$ extortion group
Lawrence Abrams reports: In a new blog post published tonight, Microsoft has confirmed that one of their employee’s accounts was compromised by Lapsus$, providing limited access to source code repositories. “No customer code or data was involved in the observed activities. Our investigation has found a single account had been compromised, granting limited access. Our…
Ca: Dang claims he hacked Alberta vaccine passport system using Kenney’s birthday to highlight flaws
Ashley Joannou reports: Edmonton-South MLA Thomas Dang has admitted to hacking the Alberta government’s COVID-19 vaccine record system last year using Premier Jason Kenney’s birthday. In an exclusive interview with Postmedia, Dang, who resigned from the NDP caucus in December and now sits as an independent, said he did it to highlight security vulnerabilities and…
Okta, Microsoft both investigating new claims by Lapsus$ hacking group
Ax Sharma reports: Okta, a leading provider of authentication services and Identity and access management (IAM) solutions says it is investigating claims of data breach. On Tuesday, data extortion group Lapsus$ posted screenshots in their Telegram channel of what it alleges to be Okta’s customer data. So far, the company seems to be claiming that…
NJ: East Windsor Township computer system hacked
Lea Kahn reports: The East Windsor Township’s computer system has been compromised by unknown hackers, but it took more than two weeks for township officials to publicly acknowledge the breach and notify township residents. A message – “Notice of Cyber Incident” – scrolled across the top of the East Windsor municipal website March 18. It…
Hackers hit Mass. background-check firm used by state agencies, universities
Dan Adams reports: Computer hackers made off with highly sensitive personal records on more than 164,000 job-seekers and license applicants in a virtual “smash and grab” attack last November on Creative Services Inc., a Massachusetts company that conducts background checks on everyone from marijuana entrepreneurs to state employees, university faculty members, and workers at nuclear…