Okta cybersecurity breach wipes out more than $2 billion in market cap::Okta shares continued their fall Monday after the company said client files had been accessed by an unknown hacker, the latest attempt involving the company.

    • Seasm0ke@lemmy.world
      link
      fedilink
      English
      arrow-up
      23
      ·
      1 year ago

      It is very common in enterprise environments. If you configure sign in via SAML, OIDC, OAUTH2 youd at least come across documentation for it.

      • rambaroo@lemmy.world
        link
        fedilink
        English
        arrow-up
        2
        arrow-down
        1
        ·
        1 year ago

        Why? I’ve configured these for our enterprise software and I only heard about this garbage company from their job listings on LinkedIn

        • Seasm0ke@lemmy.world
          link
          fedilink
          English
          arrow-up
          1
          ·
          1 year ago

          Honestly no idea what the selling point is. I imagine its somewhere akin to duo where there are added management features like bypass codes and manual MFA pushes that you don’t get with azure. Maybe people went there early after adfs, just speculating

    • kyle@lemm.ee
      link
      fedilink
      English
      arrow-up
      13
      ·
      1 year ago

      If you work in an office, chances are you use Active Directory or Azure AD. Just another way to sign on to stuff, sorta like how you can “sign in with Google” or “sign in with Facebook” on some sites.

      Okta is pretty popular tbh, and a breach this large is crazy.

    • AlecSadler@sh.itjust.works
      link
      fedilink
      English
      arrow-up
      8
      arrow-down
      2
      ·
      1 year ago

      It’s because they suck. I’m glad you haven’t heard of them.

      I have preferred Auth0, but unfortunately, Okta acquired them.

      Source: Have spearheaded numerous Okta and Auth0 implementations at publicly traded and private companies. I hate Okta. I still prefer Auth0, but it sucks they’re owned by Okta.

    • GONADS125@lemmy.world
      link
      fedilink
      English
      arrow-up
      5
      ·
      1 year ago

      I had to use okta for a mental health company I worked at. I had so many stages of logging in with different passwords before I could access any PHI, including a ubi key for my laptop on startup.

      We still had periodic data breaches… The sad truth is that our information just isn’t safe, and breaches happen constantly.