On Friday, Okta, a provider of identity services, issued a warning about social engineering assaults planned by threat actors to gain elevated administrator permissions.
The caller’s tactic, according to the company, was to persuade service desk staff to reset all multi-factor authentication (MFA) factors enrolled by highly privileged users. “In recent weeks, multiple U.S.-based Okta customers have reported a consistent pattern of social engineering attacks against IT service desk personnel,” the company said.
The adversary subsequently made the decision to mimic users within the infiltrated organization by abusing the extremely powerful Okta Super Administrator accounts read more Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges.
Stay informed with the best cybersecurity news and raise your cybersecurity awareness with our comprehensive coverage of the latest threats, breaches, and solutions.