Criminals Target Okta Clients in Elaborate MFA Reset Scam to Gain Administrator Privileges
In a recent security revelation, cybercriminals have set their sights on Okta’s clients in a sophisticated attempt to gain access to accounts with administrator privileges. Okta, a leading identity and access management provider, confirmed this concerning trend in a blog post, highlighting a pattern of social engineering attacks against IT service desk personnel employed by several U.S.-based Okta customers.
The modus operandi of the attackers involved convincing service desk personnel to reset all multi-factor authentication (MFA) factors for highly privileged users. This campaign unfolded during a specific timeframe, running from July 29 to August 19, 2023, posing a significant threat to the security of affected organizations.