BIG ShinyHunters confirmed to me that they are behind the recent Okta vishing campaign and have published alleged data from three major victims Crunchbase SoundCloud and Betterment on their newâ Alon Gal
p
Agree Join LinkedIn
pp
By clicking Continue to join or sign in you agree to LinkedInâs User Agreement Privacy Policy and Cookie Policy
ppBIG ShinyHunters confirmed to me that they are behind the recent Okta vishing campaign and have published alleged data from three major victims Crunchbase SoundCloud and Betterment on their new blog stating more are coming ð½
I was approached by ShinyHunters following a BleepingComputer report yesterday about an Okta SSO vishing campaign that resulted in several unknown victims ShinyHunters confirmed they were behind the campaign and shared a Tor victims blog in which Crunchbase SoundCloud and Betterment all had their alleged data leaked after rejecting the groups extortion attempt The group said more victims will be published soon
I only downloaded the Crunchbase data so far It shows databases with PII signed contracts and other corporate data belonging to the company
These are the descriptions added to each company
Betterment LLC
Over 20 million records containing Personally Identifiable Information PII have been compromised
Crunchbase Inc
Over 2 million records containing Personally Identifiable Information PII have been compromised
SoundCloud
Over 30 million records containing Personally Identifiable Information PII have been compromised
Researchers looking to get the URL please DM me
To learn how to protect yourself from being a victim of this campaign please read Oktas advisory httpslnkdindTRBY2yHppThis Okta vishing campaign by ShinyHunters is a critical reminder that identity is the new primary attack surface When technical controls are bypassed via social engineering your defense relies entirely on identity governance and architectural resilience
To harden your environment against these specific tactics
Mandate FIDO2WebAuthn Standard MFA SMS or Push is increasingly vulnerable to MFA fatigue or helpdesk manipulation Hardwarebacked keys are the only definitive technical defense against sophisticated vishing
Harden Helpdesk Protocols Implement a strict outofband verification process for MFA resets that doesnt rely solely on a phone call or a userâs selfreported datappThank you for this Alon GalppððppðppBetterment data its bad DMedppUh ohppNice huntpp
To view or add a comment sign in
pp
19434 followers
pp
Create your free account or sign in to continue your search
pppppp
or
pp
New to LinkedIn Join now
pp
By clicking Continue to join or sign in you agree to LinkedInâs User Agreement Privacy Policy and Cookie Policy
pp
LinkedIn
pp
Never miss a beat on the app
pp
Donât have the app Get it in the Microsoft Store
ppp
Agree Join LinkedIn
pp
By clicking Continue to join or sign in you agree to LinkedInâs User Agreement Privacy Policy and Cookie Policy
ppBIG ShinyHunters confirmed to me that they are behind the recent Okta vishing campaign and have published alleged data from three major victims Crunchbase SoundCloud and Betterment on their new blog stating more are coming ð½
I was approached by ShinyHunters following a BleepingComputer report yesterday about an Okta SSO vishing campaign that resulted in several unknown victims ShinyHunters confirmed they were behind the campaign and shared a Tor victims blog in which Crunchbase SoundCloud and Betterment all had their alleged data leaked after rejecting the groups extortion attempt The group said more victims will be published soon
I only downloaded the Crunchbase data so far It shows databases with PII signed contracts and other corporate data belonging to the company
These are the descriptions added to each company
Betterment LLC
Over 20 million records containing Personally Identifiable Information PII have been compromised
Crunchbase Inc
Over 2 million records containing Personally Identifiable Information PII have been compromised
SoundCloud
Over 30 million records containing Personally Identifiable Information PII have been compromised
Researchers looking to get the URL please DM me
To learn how to protect yourself from being a victim of this campaign please read Oktas advisory httpslnkdindTRBY2yHppThis Okta vishing campaign by ShinyHunters is a critical reminder that identity is the new primary attack surface When technical controls are bypassed via social engineering your defense relies entirely on identity governance and architectural resilience
To harden your environment against these specific tactics
Mandate FIDO2WebAuthn Standard MFA SMS or Push is increasingly vulnerable to MFA fatigue or helpdesk manipulation Hardwarebacked keys are the only definitive technical defense against sophisticated vishing
Harden Helpdesk Protocols Implement a strict outofband verification process for MFA resets that doesnt rely solely on a phone call or a userâs selfreported datappThank you for this Alon GalppððppðppBetterment data its bad DMedppUh ohppNice huntpp
To view or add a comment sign in
pp
19434 followers
pp
Create your free account or sign in to continue your search
pppppp
or
pp
New to LinkedIn Join now
pp
By clicking Continue to join or sign in you agree to LinkedInâs User Agreement Privacy Policy and Cookie Policy
pp
pp
Never miss a beat on the app
pp
Donât have the app Get it in the Microsoft Store
ppp
