Lapsus$ Breached Okta Using Spreadsheet Of Passwords

Share post:

Lapsus$ was able to infiltrate Okta’s internal system after accessing a spreadsheet of passwords on compromised Sitel’s internal network.

Sitel discovered the security incident in its VPN gateways on a legacy network belonging to Sykes, a customer service company working for Okta and acquired by Sitel in 2021.

The attackers used remote access services and publicly accessible hacking tools to compromise and navigate through Sitel’s network.

After gaining deeper visibility into the network, the hackers were able to gain access to a spreadsheet on Sitel’s internal network called “DomAdmins-LastPass.xlsx.”

The spreadsheet file contained passwords for domain administrator accounts that were exported from a Sitel employee’s LastPass password manager.

The hackers created a new Sykes user account that gives them broad access to the organization and helps keep them within the system in case they were discovered and locked out.

For more information, read the original story in TechCrunch.

SUBSCRIBE NOW

Related articles

Microsoft Pledges to Shield European Cloud Services Amid Rising Geopolitical Tensions

In response to escalating concerns over U.S. government influence on cloud operations, Microsoft has committed to legally contesting...

DOGE Accused of Creating Massive Surveillance System Under Musk-Led Trump Administration

A new opinion piece in the New York Times warns that the U.S. Department of Government Efficiency (DOGE),...

Is the U.S. Undermining Its Tech Leadership? Visa Crackdowns and China’s Academic Surge Raise Concerns

The United States has long been a magnet for global STEM talent, fueling its dominance in technology and...

US Bank Regulator Hacked – Sensitive Banking Info Stolen

The US Office of the Comptroller of the Currency (OCC) reported a cybersecurity breach involving unauthorized access to...

Become a member

New, Relevant Tech Stories. Our article selection is done by industry professionals. Our writers summarize them to give you the key takeaways