Early on March 22, Single-Sign-On provider Okta, an organization that allows people to use one account to log into multiple digital services, confirmed they are investigating a potential breach by Lapsus$, a hacking group. Knowledge of the possible breach came out after the group appeared to post screenshots on the internet, detailing their access into Okta’s environment and stating the Okta clients were the end target.
Lapsus$ is a recently emerging threat actor that has been linked to attacks on elements of digital infrastructure. If verified, an attack on Okta would represent a major attack on digital supply chains. The U.S. Cybersecurity and Infrastructure Agency (CISA) has put major focus on the security of digital supply chain over the last year.
“If you have not already done so, I urge our private sector partners to harden your cyber defenses immediately by implementing the best practices we have developed together over the last year,” Biden said in a recent statement.
You can read more about the potential Okta breach here.