Okta Security Flaw Credential Stuffing Attacks on Customers

Published On: May 2, 2024Categories: Cyber Alerts

In today’s SensCy Cyber Alert, your SensCy team is reviewing a security issue in the Identity and access management company Okta that could lead to customer accounts being breached. The threat actors are using the credential stuffing method to compromise user accounts by trying out in an automated manner lists of usernames and passwords typically purchased from cybercriminals.

In a recent advisory, Okta says the attacks seem to originate from the same infrastructure used in the brute-force and password-spraying attacks previously reported by Cisco Talos.

The company provides a set of actions that can block these attacks at the edge of the network:

  • Enable ThreatInsight in Log and Enforce Mode to block IP addresses known for involvement in credential stuffing proactively before they can even attempt authentication.
  • Deny access from anonymizing proxies to proactively block requests that come through shady anonymizing services.

 

 

 

 

 

 

 

  • Switching to Okta Identity Engine, which offers more robust security features, including CAPTCHA challenges for risky sign-ins and passwordless authentication options like Okta FastPass.
  • Implement Dynamic Zones which enables organizations to specifically block or allow certain IPs and manage access based on geolocation and other criteria.

 

Related Posts

  • May 15, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Brief, your SensCy team reviewed Microsoft’s latest series of patches released on Tuesday, May 14, 2024. This month Microsoft fixes THREE [...]

  • May 9, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team recommends Google Chrome Browser users to install the new Chrome Version 124 immediately. The new update patches [...]

  • May 1, 2024

    Categories: Cyber Alerts

    In today’s SensCy Cyber Alert, your SensCy team recommends Google Chrome Browser users to install the new Chrome Version 124 immediately. The new update patches [...]