https://www.channelfutures.com/wp-content/themes/channelfutures_child/assets/images/logo/footer-new-logo.png
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
Channel Futures
  • NEWSLETTER
  • Home
  • Technologies
    • Back
    • SDN/SD-WAN
    • Cloud
    • RMM/PSA
    • Security
    • Telephony/UC/Collaboration
    • Cable
    • Mobility & Wireless
    • Fiber/Ethernet
    • Data Centers
    • Backup & Disaster Recovery
    • IoT
    • Desktop
    • Artificial Intelligence
    • Analytics
  • Strategy
    • Back
    • Mergers and Acquisitions
    • Channel Research
    • Business Models
    • Distribution
    • Tech Services Brokerages
    • Sales & Marketing
    • Best Practices
    • Vertical Markets
    • Regulation & Compliance
    • Diversity, Equity & Inclusion
  • MSP 501
    • Back
    • MSP 501 Information Center
    • 2021 MSP 501 Rankings
  • Intelligence
    • Back
    • Galleries
    • Podcasts
    • From the Industry
    • Reports/Digital Issues
    • Webinars
    • White Papers
  • Channel Futures TV
  • EMEA
  • Channel Chatter
    • Back
    • People on the Move
    • New/Changing Channel Programs
    • New Products & Services
    • Industry Honors
  • Resources
    • Back
    • Advisory Boards
    • Industry Organizations
    • Our Sponsors
    • Advertise
    • 2022 Editorial Calendar
  • Awards
    • Back
    • 2021 MSP 501
    • Circle of Excellence
    • DE&I 101
    • Top Gun 51
    • Channel Partners 101 (CP 101)
  • Events
    • Back
    • CP Conference & Expo
    • MSP Summit
    • Channel Partners Europe
    • Channel Partners Event Coverage
    • Webinars
    • Industry Events
  • About Us
  • DE&I
    • Newsletter
  • REGISTER
  • MSPs
  • VARs / SIs
  • Agents
  • Cloud Service Providers
  • Channel Partners Events
 Channel Futures

Security


Shutterstock

cloaked hacker

Lapsus$ Hacking Group Reportedly Hits Microsoft, Okta

  • Written by Edward Gately
  • March 22, 2022
Lapsus$ also claimed responsibility for breaches at Samsung and Nvidia.

The Lapsus$ hacking group has struck again, this time reportedly targeting Microsoft and Okta with data leaks.

The Lapsus$ hacking group claims to have leaked the source code for Bing, Cortana and other projects stolen from Microsoft’s internal Azure DevOps server, Bleeping Computer reported. The group posted a screenshot to their Telegram channel indicating the hack.

“Our investigation found an account had been compromised, granting limited access,” a Microsoft spokesperson said, “Our cybersecurity response teams quickly engaged to remediate the compromised account and prevent further activity.”

Microsoft said it doesn’t rely on the secrecy of code as a security measure. In addition, viewing source code isn’t tied to elevation of risk.

Okta, which provides authentication services to thousands of customers such as Major League Baseball (MLB) and MGM Resorts, is investigating a Lapsus$ data breach.

According to Reuters, hackers posted screenshots of what they said was internal information on their Telegram channel.

Okta issued the following statement in response to the Lapsus$ hacking group’s claims:

“In late January 2022, Okta detected an attempt to compromise the account of a third-party customer support engineer working for one of our subprocessors. The matter was investigated and contained by the subprocessor. We believe the screenshots shared online are connected to this January event. Based on our investigation to date, there is no evidence of ongoing malicious activity beyond the activity detected in January.”

Lapsus$ Behind Other Big-Name Data Leaks

Lapsus$ is allegedly responsible for obtaining confidential data including the source code that operates Samsung Galaxy smartphones. It also claimed responsibility for the recent Nvidia breach.

Rajiv Pimplaskar is CEO of Dispersive, a network security provider.

Dispersive's Rajiv Pimplaskar

Dispersive’s Rajiv Pimplaskar

“Attackers attack Microsoft and Okta because they know the value of identity,” he said. “Identity, not apps, not servers, not devices, is the important component in the cybersecurity world.”

Organizations must check identities, especially the privilege ones, in real time, not just monthly, Pimplaskar said.

Saryu Nayyar is Gurucul‘s CEO and founder.

Gurucul's Saryu Nayyar

Gurucul’s Saryu Nayyar

“While customers are relying on vendors like Okta for zero trust and starting to implement secure access service edge (SASE), this shows the need for more advanced security operations tools to ensure that threat actors aren’t abusing identity and access policies,” she said.

CISOs must invest more in automation-focused threat detection, investigation and response (TDIR) solutions, Nayyar said.

Kevin Novak is managing director at Breakwater Solutions. He said if the compromise involved a successful assault on client information, such as client credentialing, key materials or source code pertaining to environments that may lead to client compromises, then Okta may suffer much greater scrutiny from the field for its “lack of adequate, timely notification of the event.”

Breakwater Solutions' Kevin Novak

Breakwater Solutions’ Kevin Novak

“Security professionals around the world are debating the list of compromise possibilities based on the pictures posted about the hack, but no definitive word has been shared by Okta,” he said.

Customers Can’t Just ‘Switch Off’ Okta

If hackers compromised Okta’s environment, companies can’t “simply flip a switch” and authenticate/authorize on a different platform, Novak said. Embedded platforms require time to swap.

“While some have made conjectures about whether this hack contributed to another breach here or there, it would seem that a full compromise of Okta’s backend would have become far more obvious by now, but we’ll see more over the next few months,” he said.

Want to contact the author directly about this story? Have ideas for a follow-up article? Email Edward Gately or connect with him on LinkedIn.
Tags: MSPs VARs/SIs Best Practices Cloud SDN/SD-WAN Security Strategy

Most Recent


  • Google Cloud Starts New ‘Strategic’ Unit, Names Umesh Vemuri to Run It
    The changes coincide with yet another Google Cloud executive exit. Find out who’s leaving.
  • hire
    Kinka Joins Bridgepointe to Spur Charlesbank-Backed Organic Growth
    Scott Kinka made a name for himself in the channel working at Evolve IP.
  • Unleash
    ThreatX Unleashes Xcellerate Partner Program for API Protection
    Demand for real-time API protection is skyrocketing.
  • Departures
    Partners Speak to Microsoft’s Rodney Clark Departure and New Requirements Controversy
    Our MSPs weigh in on Clark’s sudden exit, and the shakeups and challenges the new NCE program has presented.

Leave a comment Cancel reply

-or-

Log in with your Channel Futures account

Alternatively, post a comment by completing the form below:

Your email address will not be published. Required fields are marked *

Related Content

  • Lit exit signs down hallway
    Exclusive: Datto Channel Executive Departing, Others Reportedly Could Follow
  • Data breach
    Okta Data Breach Could Impact Hundreds of Corporate Customers
  • Business Thinker
    What's On Your Mind? Share at CP Expo's Cybersecurity Peer Group
  • cybersecurity strategy
    Datto MSP Technology Day: SMBs Need Strong SaaS Cybersecurity

Upcoming Events

View all

Channel Partners Europe

June 14, 2022 - June 15, 2022

MSP Summit

September 13, 2022 - September 16, 2022

Galleries

View all

Partners Speak to Microsoft’s Rodney Clark Departure and New Requirements Controversy

May 18, 2022

The CF List: 2022’s 20 Top SD-WAN Providers You Should Know

May 18, 2022

Marketing All-Stars Share Their Focus for 2022 and Beyond

May 18, 2022

Industry Perspectives

View all

A Sneak Peek at the 2022 BrightCloud Threat Report

May 17, 2022

Build Customers for Life with CX and Lifecycle Selling

May 16, 2022

Voice Analytics Are a Must-Have as Companies Evolve COVID-Rushed Tech

May 12, 2022

Webinars

View all

Simplifying SaaS Security for MSPs

April 27, 2022

How to Supercharge The Network to Support Your IT Superhero Moves

May 3, 2022

The 2022 MSP Challenge: Scale Service Delivery Despite the Talent Gap

April 21, 2022

White Papers

View all

The New Bottom Line: How MSPs Can Meet the Healthcare Crisis While Evolving Their Businesses

April 19, 2022

How to build a Security Operations Center (on a budget)

April 4, 2022

The AT&T Cybersecurity Incident Response Toolkit

April 4, 2022

Channel Futures TV

View all

AT&T, Microsoft, Cisco, ThreatLocker on Unlocking Partner Potential

Agents Share ‘Secrets,’ Industry Opportunity

May 11, 2022

Vonage Addresses Potential Partner Opportunity via Acquisition by Ericsson

May 5, 2022

Lumen Technologies ‘Built for Growth and Scale’

May 4, 2022

Twitter

ChannelFutures

.@threatx_inc rolls out first partner program. #APIprotection dlvr.it/SQd3Pd https://t.co/X6cvbgpijr

May 18, 2022
ChannelFutures

Our MSPs weigh in on @Microsoft's Rodney Clark’s sudden exit, and the shakeups and challenges the new NCE program h… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

[email protected] now reaches 177 countries — 80 more regions for the channel to target. And #AWS has a new #publicsector… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

Our CMO roundtable series concludes with members’ predictions on what their primary focus will be in the months ahe… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

“@IngramMicroInc's role is to be the enabler of an ecosystem,” @SahooSanj said at the company's cloud summit.… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

Take a sneak peak at BrightCloud's 2022 Threat Report. #Channel Partners #CyberThreats @Webroot… twitter.com/i/web/status/1…

May 18, 2022
ChannelFutures

#GoogleCloudSummit unveils new solutions for #zerotrust, supply chain security. @googlecloud dlvr.it/SQZ2By https://t.co/37buEDQ030

May 18, 2022
ChannelFutures

.@Veeam CEO @anandeswaran is gunning for outsized share of data protection market at #veeamOn2022… twitter.com/i/web/status/1…

May 18, 2022

MSSP Insider

Business advice for MSSPs and news from the broader security channel.

Newsletters and Updates

Sign up for The Channel Report, Channel Futures Update, MSP 501 Newsletter and more.

Live Channel Events

Get the latest information on the next industry-leading Channel Partners event.

Galleries

Educational slide shows and images from live events.

Media Kit And Advertising

Want to reach our audience? Access our media kit.

DISCOVER MORE FROM INFORMA TECH

  • Channel Partners Events
  • Telecoms.com
  • MSP 501
  • Black Hat
  • IoT World Today
  • Omdia

WORKING WITH US

  • Contact
  • About Us
  • Advertise
  • Newsletter

FOLLOW Channel Futures ON SOCIAL

  • Privacy
  • CCPA: “Do Not Sell My Data”
  • Cookie Policy
  • Terms
Copyright © 2022 Informa PLC. Informa PLC is registered in England and Wales with company number 8860726 whose registered and Head office is 5 Howick Place, London, SW1P 1WG.
This website uses cookies, including third party ones, to allow for analysis of how people use our website in order to improve your experience and our services. By continuing to use our website, you agree to the use of such cookies. Click here for more information on our Cookie Policy and Privacy Policy.
X