The popular password manager, 1Password, has detected suspicious activity in its copy of OKTA, which is related to an incident in the customer support system. According to a representative of 1Password, the user data has not been affected. 1Password relies on OKTA services, the biggest supplier of security tools for managing applications meant for employees.
1Password has taken immediate action to stop any harmful activity, conducted a thorough investigation, and assured that no user data or other sensitive systems, including employees and users, have been compromised.
The compromise occurred due to a breach in the OKTA support system. Okta has publicly stated that hackers were able to steal accounts for accessing support management systems and potentially view files that were downloaded by certain clients as part of recent support service requests.
It is worth noting that this is not the first significant cybersecurity incident in OKTA systems. In September, hackers gained super-administrator privileges in OKTA systems through a social engineering attack targeting support specialists. Additionally, in December 2022, cybercriminals hacked the OKTA repository on GitHub and successfully stole the source code.