On this photo illustration, an Okta logo is displayed on a smartphone.
Rafael Henrique | SOPA Images | LightRocket | Getty Images
Hackers who compromised Okta’s customer support system stole data from all the cybersecurity firm’s customer support users, Okta said in a letter to clients obtained by CNBC Tuesday, a far greater incursion than the corporate initially believed.
The expanded scope opens those customers as much as the danger of heightened attacks or phishing attempts, Okta warned. An Okta spokesperson told CNBC that customers in government or Department of Defense environments weren’t impacted by the breach.
There is no such thing as a “direct evidence” that the unidentified hackers are using the info they extracted to focus on customers, Okta said within the letter. 99.6% of those customers had an email and full name leaked, the letter notes.
The news sent shares down about 5% on Wednesday morning, regardless that it posted earnings that beat estimates. The corporate reported adjusted earnings per share of 44 cents, higher than the 30 cents analysts surveyed by LSEG, formerly Refinitiv, were expecting. Revenue for the third quarter got here in at $584 million, higher than the consensus estimate of $563 million.
“We’re working with a digital forensics firm to support our investigation and we can be sharing the report with customers upon completion. As well as, we may also notify individuals which have had their information downloaded,” a spokesperson said in a press release to CNBC.
Nonetheless, Okta provides identity management solutions for hundreds of small and huge businesses, allowing them to present employees a single point of sign on. It also makes Okta a high-profile goal for hackers, who can exploit vulnerabilities or misconfigurations to achieve access to a slew of other targets.
Within the high-profile attacks on MGM and Caesars, for instance, threat actors used social engineering tactics to use IT help desks and goal those company’s Okta platforms. The direct and indirect losses from those two incidents exceeded $100 million, including a multi-million dollar ransom payment from Caesars.
Bloomberg first reported on the letter to Okta customers.
Okta first disclosed that its customer support system had been hacked but said on the time that around 130 customers were impacted by the breach. The news sent the corporate’s share price down greater than 11% and ultimately worn out around $2 billion in market cap.