Cloudflare’s Server Hacked Using Leaked Access Token in Okta Breach | allinfosecnews.com

Feb. 2, 2024, 11:18 a.m. | Guru

Cyber Security News cybersecuritynews.com

Cloudflare discovered a threat actor on the self-hosted Atlassian server on November 23, 2023. The attack was launched with the use of one stolen access token and three compromised service account credentials that were neglected to change following the October 2023 Okta compromise. To analyze the incident, the security team engaged the help of CrowdStrike’s Forensic […]

The post Cloudflare’s Server Hacked Using Leaked Access Token in Okta Breach appeared first on Cyber Security News.

access access token account actor atlassian attack breach change cloudflare compromise compromised credentials cyber-attack cyber security hacked hacks incident leaked november october okta okta breach security security team server service service account stolen team threat threat actor token

More from cybersecuritynews.com / Cyber Security News

Android Bug Leaks DNS Traffic to Hackers While Switching VPN Servers 7 hours ago | cybersecuritynews.com

android android 14 bug critical +21

ShadowSyndicate Hackers Exploit Aiohttp Vulnerability To Steal Sensitive Data 23 hours ago | cybersecuritynews.com

access aiohttp vulnerability asynchronous attackers +25

Florida Man Arrested For Selling Fake Cisco Device To U.S. Military 23 hours ago | cybersecuritynews.com

arrested cisco computer counterfeit +25

How U.S K-12 Schools Can Solve Their Top 10 Cybersecurity Challenges – Free E-Book 23 hours ago | cybersecuritynews.com

access book can challenges +27

AI-Based Webshell Detection Model – Detailed Overview 1 day ago | cybersecuritynews.com

access ai-based security attackers code +23

Critical OpenVPN Zero-Day Flaws Affecting Millions of Endpoints Across the Globe 1 day, 2 hours ago | cybersecuritynews.com

android bsd critical cyber security +23

Operation PANDORA Shutdown 12 Fake Call Centers that Steal Over €10M 1 day, 5 hours ago | cybersecuritynews.com

10 million a network call call centers +19

CISA & FBI Release Urges Developers to Eliminate Directory Traversal Vulnerabilities 1 day, 6 hours ago | cybersecuritynews.com

agency alert bureau calling +24

LayerX Security Raises $24M for its Browser Security Platform, Enabling Employees to Work Securely from … 1 day, 22 hours ago | cybersecuritynews.com

browser browser security capital dell +24

QA Customer Response Engineer

@ ORBCOMM | Sterling, VA Office, Sterling, VA, US

View on infosec-jobs.com

Enterprise Security Architect

@ Booz Allen Hamilton | USA, TX, San Antonio (3133 General Hudnell Dr) Client Site

View on infosec-jobs.com

DoD SkillBridge - Systems Security Engineer (Active Duty Military Only)

@ Sierra Nevada Corporation | Dayton, OH - OH OD1

View on infosec-jobs.com

Senior Development Security Analyst (REMOTE)

@ Oracle | United States

View on infosec-jobs.com

Software Engineer - Network Security

@ Cloudflare, Inc. | Remote

View on infosec-jobs.com

Software Engineer, Cryptography Services

@ Robinhood | Toronto, ON

View on infosec-jobs.com