In March 2022, Okta disclosed a breach that may have put organizations at risk who rely on Okta as their Identity Provider for authenticating users to sensitive enterprise-owned resources. The outline and timeline of the breach was described by Okta’s Chief Security Officer via a blog post on the Okta site.
This white paper provides an overview of the breach and how organizations that may be impacted can protect themselves while providing visibility and future protection from breaches of this kind. The focus is on leveraging the core NIST 800-207 Zero Trust Architecture principles which are delivered by the iboss Zero Trust platform.