Okta Lapsus$ third-party support breach
The Lapsus$ extortion group compromised a laptop belonging to a support engineer at Okta subprocessor Sitel, gaining a 25-minute window of access in January 2022 that touched two customer tenants. The breach only became public when Lapsus$ posted screenshots in March.
- Victim
- Okta (via Sitel/Sykes subprocessor)