Threat actors were recently able to breach the source code of identity and access management software provider Okta. According to a report from BleepingComputer, hackers got into the source code repositories on Microsoft's GitHub platform and GitHub reported the breach to Okta.
“Upon investigation, we have concluded that such access was used to copy Okta code repositories,” Okta says in an advisory email.
While this is clearly a dangerous breach, it seems the hackers were unable to access the Okta backend or any customer data.
“No customer action is required and the Okta service remains fully operational and secure,” the email adds.
Following GitHub's warning to Okta, the company saw the breach and put in place access restrictions to all GitHub repositories on a temporary basis. This means all GitHub integrations and third-party apps connected to the repository were suspended
“We have since reviewed all recent access to Okta software repositories hosted by GitHub to understand the scope of the exposure, reviewed all recent commits to Okta software repositories hosted with GitHub to validate the integrity of our code, and rotated GitHub credentials. We have also notified law enforcement.
Additionally, we have taken steps to ensure that this code cannot be used to access company or customer environments. Okta does not anticipate any disruption to our business or our ability to service our customers as a result of this event.”
Okta is planning to publish on its blog today to discuss the breach and any follow ups on the situation. At the time of writing, that blog post is not available.