**Okta’s Customer Support System Hacked, Data Stolen From All Users**
*Hackers Gain Access to Okta’s Customer Support System*
In a recent incident, hackers successfully compromised cybersecurity firm Okta’s customer support system, gaining access to data from all of the company’s customer support users. Initially, Okta believed only around 130 customers were impacted, but a recent letter to clients revealed a far greater incursion.
**Customers at Risk of Heightened Attacks and Phishing Attempts**
The expanded scope of the security breach has put all of Okta’s customer support users at risk of heightened attacks or phishing attempts, the firm warned in the letter. However, it is important to note that customers in government or Department of Defense environments were not impacted by the breach.
“We are working with a digital forensics firm to support our investigation and we will be sharing the report with customers upon completion. In addition, we will also notify individuals that have had their information downloaded,” a spokesperson said in a statement to CNBC.
**Okta: A High-Profile Target for Hackers**
Despite this recent breach, Okta provides identity management solutions for thousands of small and large businesses, allowing them to give employees a single point of sign on. This makes the company a high-profile target for hackers, who can exploit vulnerabilities or misconfigurations to gain access to a slew of other targets.
In the past, high-profile attacks on companies, such as MGM and Caesars, have shown that cybercriminals have used social engineering tactics to exploit IT help desks and target the company’s Okta platforms, leading to direct and indirect losses exceeding $100 million.
**Market Impact and Earnings Report**
The initial disclosure of the breach saw Okta’s share price drop more than 11%, ultimately wiping out around $2 billion in market cap. The company is scheduled to report its fiscal third-quarter earnings after the bell Wednesday.
**Conclusion**
As Okta grapples with the fallout from this significant security breach, it serves as a stark reminder of the ongoing threats posed by cybercriminals, especially to high-profile companies that provide critical cybersecurity services to businesses. The incident also highlights the importance of robust security measures and the need for businesses to remain vigilant in the face of escalating cyber threats.
