<ciso brief/>
Tag Banner

All news with #sso tag

all tags →

Mon, August 29, 2022

0ktapus Phishing Campaign Compromises 130+ Firms Worldwide

#Account Takeover #Cloudflare #IAM #MFA #Okta #PII #SSO #Supply-Chain Incident #Twilio

🔐 Researchers link a sprawling phishing campaign to the 0ktapus threat group, which spoofed Okta authentication pages and induced employees to submit credentials and MFA codes. The operation hit more than 130 organizations and led to 9,931 compromised accounts, with targeted activity against Twilio and Cloudflare staff. Group-IB reports 5,441 harvested MFA codes and urges URL vigilance, better password hygiene and adoption of FIDO2 security keys.

read more →