1Passwordis one of the most popular password managers on the market. It allows individuals to store their sensitive data up to 1 GB in the cloud. But the company does not only operate for individuals, it also has more than100,000 companies among its clients, some of which have in their possession the sensitive data of millions of civilians. This is particularly the case of Okta, which protects its users' data thanks to1Password.
Okta presents itself as«the leader in secure identity and access management”, and unfortunately, the service suffered a cyberattack last Friday.
The technical director of1Passwordtries to reassure
Pedro Canahuati wanted to reassure about this attack:«We immediately terminated the activity, investigated and found no compromise of user data or other sensitive systems, whether employee or user-facing.»
The language elements used by the technical director of1Passwordduring his public speech suggest that his teams had the situation perfectly under control and that everything was under control. However, the company's internal security report seems to indicate the opposite.
No theft yes, but it was the will of the pirates
The internal incident report regarding this event reveals that the hackersmay have had the means to steal data, but they didn't do it. They had access to the company's list of administrators, which they could have used to access other systems. This is in order to steal sensitive data. The company believes the cybercriminals wereen phase d’observation.
The report states: “The activity we observed suggests that they (the hackers) carried out initial reconnaissance with the intention of remaining unnoticed in an attempt to gather information for a more sophisticated attack. »
The weakness of online password managers is always the same:online storage. If you wish to protect yourself from the risks associated with it,see our article on this subject.
In addition, you can also participate in our competition totry to win a lifetime license for the appSecrets(value €100)The latter ensures the security of your data by keeping it in an encrypted vault on iCloud.
i-nfo.fr - Official iPhon.fr app
By : Keleops AG
