Agentic AI Module Added To NHI Training Course

Forums
The Non-Human & AI ...
NHI Breaches
Okta Supply Chain B...
 
Notifications
Clear all

Okta Supply Chain Breach Exposes Customer Data Leak

 
    Last Post
  RSS

 NHI Mgmt Group
(@nhi-mgmt-group)
Prominent Member
Joined: 8 months ago
Posts: 276
Topic starter 17/12/2025 4:23 pm  

Executive Summary

In October 2023, Okta, a prominent player in identity and access management (IAM), experienced a significant supply chain breach. This incident was triggered by the exploitation of a compromised service account, which allowed attackers to gain unauthorized access to Okta’s customer support system. The breach occurred when attackers leveraged stolen credentials stored on an employee’s personal Google account, enabling them to access sensitive HTTP Archive (HAR) files. This security incident affected 134 customers, including notable clients such as 1Password, Cloudflare, and BeyondTrust, representing less than 1% of Okta’s total customer base. The breach highlights critical vulnerabilities in credential management and supply chain security.

👉 Read the full breach analysis from NHI Mgmt Group here

Key Details

Breach Timeline

  • October 2023: Okta’s supply chain breach was detected, revealing unauthorized access to customer systems.
  • Investigation confirmed the use of stolen credentials from an employee’s personal Google account.

Data Compromised

  • Access to sensitive HTTP Archive (HAR) files containing session tokens was gained.
  • Compromised credentials potentially exposed customer data for 134 clients.

Impact Assessment

  • 134 customers impacted, including major companies such as 1Password and Cloudflare.
  • The breach constitutes a small fraction of Okta’s overall customer base, yet raises significant security concerns.

Company Response

  • Okta launched an immediate investigation and implemented enhanced security measures.
  • Communication was established with affected customers to mitigate risks and provide support.

Security Implications

  • This breach underscores the importance of securing personal accounts used by employees for work purposes.
  • Highlights the need for robust credential management and continuous monitoring of service accounts.

👉 If you want to learn more about how to secure NHIs including AI Agents, check our NHI Foundational Training Course.



   
Quote
Topic Tags
Data Breach Cybersecurity Identity Management Supply Chain Attack Okta
Forum Jump:
  Previous Topic
Next Topic  
Related Topics
Topic Tags:  Data Breach (78) , Cybersecurity (111) , Identity Management (31) , Supply Chain Attack (10) , Okta (18) ,
Share:

#1 Authority in NHI Research and Advisory, empowering organizations to tackle the critical risks posed by Non-Human Identities (NHIs).

Get in Touch

Quick Links

Legal & Policies

©2025 NHIMG. All right reserved.