This suspicious activity was the result of anOkta data breach.
The “suspicious activity” occurred on September 29th.
It was quickly detected and terminated by 1Password.
Okta later determined that the attack vector was, in fact, its own customer support system.
Okta reached out to affected customers on October 19th anddisclosed the data breachon October 20th.
Okta is an identity-management service that provides cybersecurity for several high-profile companies.
To be clear, Okta was not compromised during the casino cyberattacks.
Hackers simply targeted the IT personnel at casinos.
The full scope of this data breach is unknown.
This report was not acknowledged by Okta until October 19th, according to BeyondTrust.
This isn’t a nightmare-levelLastPass situation.
Note that 1Password user databases are encrypted.
