1Password is confirming it was attacked by cyber criminals after Okta was breached for the second time in as many years, but says customers’ login details are safe.
The outfit said the attack was initially detected on September 29 by a member of 1Password’s IT team after they received an email indicating that they had ordered a report including a list of all 1Password admins.
Knowing they didn’t order this report, the company’s incident response team was quickly engaged. They found a suspicious IP address and later realized the unknown attacker accessed the company’s Okta instance with admin privileges.