all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Okta Post-Exploitation Method Exposes User Passwords

Add to bookmarks
March 23, 2023, 3:18 p.m. | Elizabeth Montalbano, Contributor, Dark Reading

Dark Reading www.darkreading.com

Accidentally typing a password in the username field of the platform saves them to audit logs, to which threat actors can gain access and use to compromise enterprise services.

access audit compromise enterprise enterprise services exploitation logs okta password passwords platform post-exploitation services threat threat actors username

Visit resource

More from www.darkreading.com / Dark Reading

The Role of the CISO in Digital Transformation 4 months, 3 weeks ago | www.darkreading.com
ciso cloud cloud migration controls +15
Cyber Threats to Watch Out for in 2024 4 months, 3 weeks ago | www.darkreading.com
capabilities cloud cyber cyber threats +19
CISA, NCSC Offer a Road Map, Not Rules, in New Secure AI Guidelines 4 months, 3 weeks ago | www.darkreading.com
build cisa companies down +7
Ardent Health Hospitals Disrupted After Ransomware Attack 4 months, 3 weeks ago | www.darkreading.com
ardent attack breach care +7
General Electric, DARPA Hack Claims Raise National Security Concerns 4 months, 3 weeks ago | www.darkreading.com
access ai research claims classified +19
Hamas-Linked APT Wields New SysJoker Backdoor Against Israel 4 months, 3 weeks ago | www.darkreading.com
apt backdoor cybergang gaza +10
Data De-Identification: Balancing Privacy, Efficacy & Cybersecurity 4 months, 3 weeks ago | www.darkreading.com
breaches business companies consumer +13
Balancing Simplicity and Security in the Digital Experience 4 months, 3 weeks ago | www.darkreading.com
businesses consumer data digital +9
Hack The Box Launches 5th Annual University CTF Competition 4 months, 3 weeks ago | www.darkreading.com
box competition ctf hack +2

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

SOC Cyber Threat Intelligence Expert

@ Amexio | Luxembourg, Luxembourg, Luxembourg
View on infosec-jobs.com

Systems Engineer - SecOps

@ Fortinet | Dubai, Dubai, United Arab Emirates
View on infosec-jobs.com

Ingénieur Cybersécurité Gouvernance des projets AMR H/F

@ ASSYSTEM | Lyon, France
View on infosec-jobs.com

Senior DevSecOps Consultant

@ Computacenter | Birmingham, GB, B37 7YS
View on infosec-jobs.com
View more jobs