Security news aggregator

Latest coverage for Okta

Okta is an identity and access management platform whose authentication services affect account security, access control, and breach response.

170 headlines in this view

Refine the feed

Search across headline titles and summaries.

Tag briefing

Background for this topic.

Okta is a cloud identity and access management platform used to authenticate people, issue access to applications, and administer workforce or customer identities. Its capabilities commonly include single sign-on, multifactor authentication, directory and lifecycle management, and policy-based authorization across SaaS, on-premises, and custom applications.

Because Okta can control access to many systems, its administrator accounts, identity APIs, integrations, and authentication sessions are high-value security surfaces. Organizations should apply least privilege, phishing-resistant MFA where feasible, careful separation of administrative roles, and prompt removal of departing users; misconfigured federation or provisioning can otherwise grant excessive or persistent access. Logs covering administrator activity, authentication events, token use, and changes to applications or policies support detection and incident response. Security advisories and vulnerability assessments should include Okta agents, connectors, browser components, and downstream integrations, while investigations should consider revoking sessions and rotating affected credentials.

Volume over time

Weekly headline count for the current query.

Showing 20 most recent headlines of 170
Bank Info Security 1 month, 3 weeks ago

Why AI Agents Are Creating a New Security Blind Spot

Okta's Charlotte Wylie on Identity, Governance and Rogue AI AccessAI agents are becoming a new identity type inside enterprises, creating visibility gaps and security risks most organizations aren't prepared to manage. Okta's Charlotte Wylie explains why shadow agents, overprovisioned access and AI-driven attacks demand a new governance model.

Bank Info Security 3 months, 1 week ago

AI Is Accelerating Cyberattacks Faster Than Defenses

Okta's Brett Winterford on Identity Threats and Agentic AI RisksAI is accelerating cyberattacks, collapsing timelines and exposing new identity risks. Okta's Brett Winterford explains how attackers are using AI to scale phishing, exploit credentials and infiltrate enterprises - and what CIOs must do to defend against this rapidly evolving threat landscape.

Bank Info Security 4 months ago

How to Govern AI Agents Before They Go Rogue

Okta's Arkadiusz Krowczynski on Why Governing AI Agents Starts With IdentityAI agents are being deployed faster than enterprises can secure them, creating blind spots across access, ownership and governance. Half of companies lack any governance or a shutdown mechanism when agents go rogue, says Arkadiusz Krowczynski, principal product acceleration specialist at Okta.

Organizations typically roll out multi-factor authentication (MFA) and assume stolen passwords are no longer enough to access systems. In Windows environments, that assumption is often wrong. Attackers still compromise networks every day using valid credentials. The issue is not MFA itself, but coverage.  Enforced through an identity provider (IdP) such as Microsoft Entra ID, Okta, or

Bank Info Security 5 months, 1 week ago

Semperis Buys MightyID to Expand Identity Security

Acquisition Adds Okta and Ping Coverage to Semperis' Identity Security PlatformSemperis has acquired MightyID to extend its identity-first security and cyber resilience strategy beyond Active Directory and Entra ID into Okta and Ping. CEO Mickey Bresman says the deal addresses customer demand for multi-identity provider protection backup recovery and migration.

Bank Info Security 5 months, 1 week ago

Semperis Buys MightyID to Expand Identity Security

Acquisition Adds Okta and Ping Coverage to Semperis' Identity Security PlatformSemperis has acquired MightyID to extend its identity-first security and cyber resilience strategy beyond Active Directory and Entra ID into Okta and Ping. CEO Mickey Bresman says the deal addresses customer demand for multi-identity provider protection backup recovery and migration.

Bank Info Security 5 months, 2 weeks ago

Social Engineering Hackers Target Okta Single Sign On

ShinyHunters Campaign Uses Voice Phishing to Bypass MFA and Steal Corporate DataSecurity experts warn that "an active and ongoing campaign" being waged by ShinyHunters extortionists has at least 150 organizations in its sights across a range of sectors, with attackers using live voice phishing to bypass multifactor authentication, steal cloud data and hold it to ransom.

Bank Info Security 5 months, 3 weeks ago

Voice Phishing Okta Customers: ShinyHunters Claims Credit

Okta Alerts Customers' CISOs to Malicious Campaigns Seeking Single Sign-On AccessA surge in attacks that bypass some types of multifactor authentication has been tied to a new generation of voice-phishing toolkits that give attackers the ability to orchestrate what a target sees in their browser, warns a new report from Okta, which is among the services being targeted.

Loading more headlines...