Collecting Cyber-News from over 60 sources

Tag: okta

TechTalk: Okta vereint sämtliche Identity-Tools unter einem Layer

Jun 9, 2026 8:43 AM

Tags: ai, cloud, conference, identity, okta, tool

Auf der diesjährigen European Identity Cloud Conference in Berlin durften wir unter anderem mit dem Sicherheitsanbieter Okta dieses Videointerview führen, und das in persona mit Thomas Heinz. Von dem wollten wir wissen, warum sich Unternehmen dieser Tage mit dem Thema Identity Security Fabric beschäftigen sollten, und welche Maßnahmen für den sicheren Betrieb von KI-Agenten erforderlich…
TechTalk: Okta vereint sämtliche Identity-Tools unter einem Layer

Jun 9, 2026 8:43 AM

Tags: ai, cloud, conference, identity, okta, tool

Auf der diesjährigen European Identity Cloud Conference in Berlin durften wir unter anderem mit dem Sicherheitsanbieter Okta dieses Videointerview führen, und das in persona mit Thomas Heinz. Von dem wollten wir wissen, warum sich Unternehmen dieser Tage mit dem Thema Identity Security Fabric beschäftigen sollten, und welche Maßnahmen für den sicheren Betrieb von KI-Agenten erforderlich…
Kali365 PhaaS Expands to Okta, MAX Messenger Attacks

Jun 4, 2026 9:42 AM

Tags: attack, cyber, infrastructure, intelligence, microsoft, monitoring, okta, phishing, russia, service, theft, threat

The Kali365 phishing-as-a-service (PhaaS) platform has significantly expanded its operational scope, moving beyond Microsoft 365 token theft to target Okta single sign-on (SSO) environments and Russia’s rapidly growing MAX Messenger platform. New threat intelligence reveals a more mature, multi-brand phishing ecosystem with centralized infrastructure, real-time token monitoring, and geographically targeted campaigns. Previously documented for abusing…
Okta integriert Claude Compliance API: Neue Identitätssicherheit für KI-Umgebungen von Anthropic

Jun 3, 2026 12:43 PM

Tags: ai, api, compliance, okta

Okta integriert ISPM in die Claude Compliance API: Unternehmen erkennen Identitätsrisiken in Anthropic-Umgebungen und sichern KI-Agenten zentral ab. effektiv. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/okta-integriert-claude-compliance-api-neue-identitaetssicherheit-fuer-ki-umgebungen-von-anthropic/a45366/
FBI-Flagged Phishing Kit Kali365 Expands Its Reach

Jun 3, 2026 12:42 AM

Tags: microsoft, okta, phishing, russia, service

Once targeting just Microsoft 365, the phishing-as-a-service platform now aims at AWS, Okta, and Russian platforms, while relying on device code phishing. First seen on darkreading.com Jump to article: www.darkreading.com/cyber-risk/fbi-flagged-phishing-kit-kali365-expands-its-reach
Kali365 imitiert vermehrt Unternehmen wie Microsoft und Okta

Jun 2, 2026 6:42 PM

Tags: authentication, cyberattack, intelligence, mfa, microsoft, okta, phishing, service, threat

Steven Campbell, Staff Threat Intelligence Researcher bei Arctic Wolf, ordnete kürzlich die FBI-Warnung vor ‘Kali365″, eine Kampagne, die sich mittlerweile vom Phishing-Kit zu einer umfassenderen Phishing-as-a-Service-Plattform entwickelt hat, und aktuelle Entwicklungen rund um moderne Phishing-Angriffe ein. Kali365 war zunächst dadurch aufgefallen, dass sie den OAuth-Device-Authorization-Flow von Microsoft ausnutzte, um Authentifizierungs-Tokens zu stehlen und Multi-Faktor-Authentifizierung zu…
Why AI Agents Are Creating a New Security Blind Spot

May 26, 2026 7:00 PM

Tags: access, ai, attack, governance, identity, okta, risk

Okta’s Charlotte Wylie on Identity, Governance and Rogue AI Access. AI agents are becoming a new identity type inside enterprises, creating visibility gaps and security risks most organizations aren’t prepared to manage. Okta’s Charlotte Wylie explains why shadow agents, overprovisioned access and AI-driven attacks demand a new governance model. First seen on govinfosecurity.com Jump to…
Warum eingebaute KI-Leitplanken für Agentic-AI nicht ausreichen

May 12, 2026 3:19 PM

Tags: access, ai, api, intelligence, okta, saas, threat, tool

KI-Agenten entwickeln sich rasant zu zentralen Werkzeugen der Automatisierung. Um ihre Aufgaben erfüllen zu können, benötigen sie umfangreiche Zugriffsrechte auf Tools, Datenbanken, SaaS-Anwendungen und das Internet. Ein aktueller Bericht unserer Okta Threat Intelligence warnt nun davor, diesen Systemen unreguliert die Schlüssel zum Stadttor wie Anmeldedaten, API-Schlüssel, persönliche Access-Tokens und OAuth-Tokens zu überreichen. Jüngste […] First…
Okta Studie zeigt: Eingebaute KI-Guardrails reichen nicht aus

May 12, 2026 1:18 PM

Tags: ai, credentials, LLM, okta

In einem Szenario genügte bereits ein simples Webformular auf einer präparierten Website, um ein unzensiertes LLM dazu zu bringen, seinen kompletten Credential-Store offenzulegen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/okta-studie-zeigt-eingebaute-ki-guardrails-reichen-nicht-aus/a45091/
Kontrollverlust in der KI-Transformation Warum autonome Agenten zwingend IAM und Sicherheit brauchen

May 4, 2026 2:49 PM

Tags: access, ai, governance, iam, identity, okta, strategy

Okta veröffentlicht die Ergebnisse seines jährlichen Reports <>. Zentrale Erkenntnis:, weltweit stufen 99 Prozent der Führungskräfte in der obersten Führungsebene das Identity and Access-Management (IAM) als wichtig für die KI-Transformation ein; 90 Prozent fehlt aber nach wie vor eine umfassende Strategie zur Steuerung autonomer Agenten. Schlimmer noch: Lediglich 58 Prozent nennen die Governance […] First…
AI agents can bypass guardrails and put credentials at risk, Okta study finds

May 3, 2026 10:50 AM

Tags: access, ai, attack, browser, chrome, cloud, computer, control, credentials, governance, identity, intelligence, LLM, login, network, okta, phishing, risk, service, technology, theft, threat

Phishing the agent: Why AI guardrails aren’t enough, a report on tests conducted by cloud identity and access management (IAM) company Okta Threat Intelligence, which uncovered all of the problems cited above, and more.Their research focused on OpenClaw, a model-agnostic multi-channel AI assistant which has seen explosive growth inside enterprises since appearing in late 2025.…
AI agents can bypass guardrails and put credentials at risk, Okta study finds

May 3, 2026 10:50 AM

Tags: access, ai, attack, browser, chrome, cloud, computer, control, credentials, governance, identity, intelligence, LLM, login, network, okta, phishing, risk, service, technology, theft, threat

Phishing the agent: Why AI guardrails aren’t enough, a report on tests conducted by cloud identity and access management (IAM) company Okta Threat Intelligence, which uncovered all of the problems cited above, and more.Their research focused on OpenClaw, a model-agnostic multi-channel AI assistant which has seen explosive growth inside enterprises since appearing in late 2025.…
AI agents can bypass guardrails and put credentials at risk, Okta study finds

May 3, 2026 10:50 AM

Tags: access, ai, attack, browser, chrome, cloud, computer, control, credentials, governance, identity, intelligence, LLM, login, network, okta, phishing, risk, service, technology, theft, threat

Phishing the agent: Why AI guardrails aren’t enough, a report on tests conducted by cloud identity and access management (IAM) company Okta Threat Intelligence, which uncovered all of the problems cited above, and more.Their research focused on OpenClaw, a model-agnostic multi-channel AI assistant which has seen explosive growth inside enterprises since appearing in late 2025.…
Vulnerability remediation: Match CVEs to asset owners in seconds with Tenable Hexa AI

May 1, 2026 5:39 PM

Tags: access, ai, api, attack, automation, business, ciso, compliance, control, cve, cybersecurity, data, exploit, framework, group, identity, Internet, login, nist, okta, service, supply-chain, threat, update, vulnerability, vulnerability-management

Detecting a vulnerability is easy. Finding the person responsible for fixing it is where remediation programs often break down. See how Tenable Hexa AI uses MCP to connect your exposure data to your identity provider, automating the hunt for asset owners in seconds. Key takeaways The accountability gap is the real bottleneck. Finding a vulnerability…
The Rise of ‘Shadow AI Agents’ Inside Enterprises

Apr 25, 2026 12:39 AM

Tags: ai, governance, identity, okta, risk

Okta’s Shiven Ramji on Visibility, Identity and Hidden Risk. Enterprises are rapidly deploying AI agents, but many don’t know where they are or what they’re accessing. Shiven Ramji of Okta explains why shadow agents are the next major security risk and how identity, visibility and governance must evolve to keep up. First seen on govinfosecurity.com…
Okta Under Attack as Hackers Skip Phishing for Identity Systems

Apr 14, 2026 9:52 AM

Tags: attack, breach, cloud, cyber, data, data-breach, email, hacker, identity, okta, phishing, phone, social-engineering

Hackers are shifting away from email phishing and are directly targeting Okta and other identity providers using voice”‘based social engineering, or “Okta vishing.” This trend turns what used to be a single account compromise into an immediate, organization”‘wide cloud data breach via Single Sign-On (SSO). Instead of sending links, they stay on the phone and…
7 Privilege Management Mistakes That Put Business Data at Risk

Apr 13, 2026 6:52 AM

Tags: access, api, attack, authentication, breach, business, control, credentials, cyber, cybersecurity, dark-web, data, data-breach, detection, email, exploit, extortion, finance, github, governance, government, hacker, ibm, identity, infrastructure, insurance, ISO-27001, jobs, least-privilege, login, mfa, microsoft, monitoring, network, okta, password, privacy, radius, ransomware, regulation, risk, russia, scam, service, software, supply-chain, theft, threat, tool, unauthorized, usa, vpn, vulnerability, zero-trust

Every growing business has at least one lingering privilege management issue. It’s not because your team is lazy. It’s because organizations grow, restructure and hire far faster than manual access processes can keep up. When roles evolve or contractors come and go, permissions accumulate behind the scenes”, creating invisible attack paths. In this post, we…
7 Privilege Management Mistakes That Put Business Data at Risk

Apr 13, 2026 6:52 AM

Tags: access, api, attack, authentication, breach, business, control, credentials, cyber, cybersecurity, dark-web, data, data-breach, detection, email, exploit, extortion, finance, github, governance, government, hacker, ibm, identity, infrastructure, insurance, ISO-27001, jobs, least-privilege, login, mfa, microsoft, monitoring, network, okta, password, privacy, radius, ransomware, regulation, risk, russia, scam, service, software, supply-chain, theft, threat, tool, unauthorized, usa, vpn, vulnerability, zero-trust

Every growing business has at least one lingering privilege management issue. It’s not because your team is lazy. It’s because organizations grow, restructure and hire far faster than manual access processes can keep up. When roles evolve or contractors come and go, permissions accumulate behind the scenes”, creating invisible attack paths. In this post, we…
Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI

Apr 10, 2026 4:53 PM

Tags: ai, attack, business, credentials, crypto, cve, data, data-breach, malicious, moveIT, network, okta, radius, risk, software, supply-chain, threat, update, vulnerability, zero-day

See how you can use Tenable Hexa AI to determine in minutes if you’re impacted by the Axios npm supply chain attack. Learn how easy it is to automate configuration of scans, identify impacted assets, prioritize remediation, and more using agentic AI from Tenable. Key takeaways: Tenable Hexa AI, the agentic engine of the Tenable…
Crushing the Axios supply chain threat with Tenable Hexa AI: Use cases for agentic AI

Apr 10, 2026 4:53 PM

Tags: ai, attack, business, credentials, crypto, cve, data, data-breach, malicious, moveIT, network, okta, radius, risk, software, supply-chain, threat, update, vulnerability, zero-day

See how you can use Tenable Hexa AI to determine in minutes if you’re impacted by the Axios npm supply chain attack. Learn how easy it is to automate configuration of scans, identify impacted assets, prioritize remediation, and more using agentic AI from Tenable. Key takeaways: Tenable Hexa AI, the agentic engine of the Tenable…
UNC6783 Hackers Use Fake Okta Pages in Corporate Breach Campaign

Apr 10, 2026 2:52 PM

Tags: access, breach, corporate, hacker, login, okta, social-engineering

UNC6783 hackers and extortionists impersonate support staff, using fake Okta login pages and social engineering to access corporate systems and steal sensitive data. First seen on hackread.com Jump to article: hackread.com/unc6783-hackers-fake-okta-pages-corporate-breach/
AI Is Accelerating Cyberattacks Faster Than Defenses

Apr 9, 2026 12:52 AM

Tags: ai, cio, credentials, cyberattack, defense, exploit, identity, okta, phishing, threat

Okta’s Brett Winterford on Identity Threats and Agentic AI Risks. AI is accelerating cyberattacks, collapsing timelines and exposing new identity risks. Okta’s Brett Winterford explains how attackers are using AI to scale phishing, exploit credentials and infiltrate enterprises – and what CIOs must do to defend against this rapidly evolving threat landscape. First seen on…
Authentication is broken: Here’s how security leaders can actually fix it

Apr 6, 2026 12:51 PM

Tags: access, attack, authentication, backup, business, communications, control, credentials, cryptography, data, exploit, fido, firmware, Hardware, healthcare, identity, login, mfa, microsoft, okta, passkey, privacy, resilience, risk, soc, technology, update, windows

Sector snapshots: Where it breaks (and why that matters): Healthcare. Clinicians need tap and go speed with zero tolerance for downtime. One large hospital attempted to pair advanced HID SEOS credentials, which use privacy-preserving randomized IDs, with a clinical SSO platform that expects static IDs for user recognition. This architectural mismatch forced a choice between…
B2B Authentication Provider Comparison: Features, Pricing SSO Support (2026)

Apr 3, 2026 1:51 PM

Tags: authentication, guide, identity, okta, passkey, saas, zero-trust

This comprehensive guide compares the leading B2B authentication providers in 2026, including Auth0, Okta, SSOJet, MojoAuth, FusionAuth, and Keycloak. The article explores enterprise SSO, SCIM provisioning, pricing models, developer experience, and authentication protocols such as SAML, OAuth, and OpenID Connect. It also includes feature comparisons, real-world SaaS use cases, pricing analysis, and future identity trends…
8 ways to bolster your security posture on the cheap

Mar 31, 2026 12:29 PM

Tags: access, attack, authentication, awareness, breach, ciso, control, credentials, cyber, cyberattack, cybersecurity, data, data-breach, ddos, dkim, dmarc, dns, email, endpoint, exploit, finance, google, identity, Internet, metric, mfa, microsoft, mitigation, okta, passkey, password, phishing, risk, risk-management, service, strategy, technology, tool, training, update, waf, zero-day

2. Take full advantage of your existing tools: A practical way to strengthen enterprise security without incurring additional significant spend is to ensure you’re fully leveraging the capabilities of solutions already present within your organization, says Gary Brickhouse, CISO at security services firm GuidePoint Security.”Most organizations have invested heavily in security solutions, yet most are…
Identity Attack Path Management: SpecterOps erweitert Lösungsangebot auf Okta, GitHub und Mac

Mar 25, 2026 12:47 AM

Tags: attack, github, identity, okta

First seen on datensicherheit.de Jump to article: www.datensicherheit.de/identity-attack-path-management-specterops
Kontrolle in der KI-Ära: Wie Unternehmen den Überblick über ihre Agenten behalten

Mar 22, 2026 10:10 AM

Tags: ai, okta

Ein zentrales Element dabei ist die neue Plattform Okta for AI Agents, die ab dem 30. April 2026 verfügbar sein soll. Sie hilft Unternehmen dabei, genau diese Prinzipien praktisch umzusetzen. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/kontrolle-in-der-ki-aera-wie-unternehmen-den-ueberblick-ueber-ihre-agenten-behalten/a44235/
Gefälschte Schutz-App für Krypto-Wallets stiehlt Nutzerdaten

Mar 20, 2026 4:10 PM

Tags: crypto, fraud, infrastructure, intelligence, okta, phishing, threat

Okta Threat Intelligence hat eine gefährliche Kryptoscam-Kampagne namens <> aufgedeckt und ihre Infrastruktur zerschlagen. Die als Browser-Erweiterung beworbene Anwendung versprach Nutzern, ihre Krypto-Wallet vor Phishing und Betrug zu schützen in Wirklichkeit war sie jedoch ein Trojaner, der gezielt Wallet-Adressen und sensible Daten von Binance, Coinbase, Metamask, Opensea, Phantom und Uniswap abgriff. Sogar Nutzer von […]…
Specterops erweitert sein Attack-Path-Management für Identitäten auf Okta, Github und Mac

Mar 20, 2026 2:09 PM

Tags: attack, github, identity, okta

Specterops, Entwickler von Bloodhound und führender Anbieter für Identity-Attack-Path-Management (APM), erweitert seine Lösung um die Unterstützung für Okta, Github und Mac-Umgebungen. Mit den neuen Opengraph-Erweiterungen in Bloodhound-Enterprise können Identity- und Sicherheitsteams plattformübergreifende Angriffspfade (Attack-Paths) gezielt erkennen und schließen. Darüber hinaus sorgen privilegierte Zugriffszonen für den Schutz kritischer Unternehmenswerte wie Code-Repositorys und sensibler Kundendaten. Specterops präsentiert…
Enterprise SSO Platforms Compared: SSOJet vs Auth0 vs WorkOS vs Okta for SaaS

Mar 20, 2026 1:10 PM

Tags: okta, saas

Compare SSOJet, Auth0, WorkOS, and Okta to choose the best enterprise SSO platform for SaaS. Learn architecture differences, pricing models, SCIM support, and implementation strategies. First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/enterprise-sso-platforms-compared-ssojet-vs-auth0-vs-workos-vs-okta-for-saas/