Who is Lapsus$
Lapsus$ is an extortion gang that has recently been linked to cyber-attacks on several high-profile targets, such as Nvidia, Samsung, Ubisoft and others. The cyber gang is known for threatening the release of sensitive information if demands by its victims aren’t met.
What we know
The situation is quickly evolving, but at the time of this blog (March 23, 1:00am EST) Okta has reported that up to 366 customers 'have potentially been impacted' by the hacker attack. Or as Okta's chief security officer David Bradbury announced, around 2.5 percent of the company's more than 15,000 customers "have potentially been impacted" and had their data possibly "viewed or acted upon." (source: https://www.okta.com/blog/2022/03/updated-okta-statement-on-lapsus/)
According to Okta’s CEO Todd Mckinnon, this breach likely stems from an attack on a “third party customer support engineer” working with a subcontractor.
Immediate course of action for Okta customers
It’s clear to us that this is a rapidly evolving situation with changing parameters, so in the meantime, 3 immediate steps for Okta users to take.
If you have any questions, please feel free to reach out to us at Enso. We will continue to report on an immediate course of action for mitigation as the situation unfolds.
Subscribe for updates