Connect with us

Hi, what are you looking for?

HorizonLifeTime.comHorizonLifeTime.com

Tech News

An Okta login bug bypassed checking passwords on some long usernames

Illustration of a password above an open combination lock, implying a data breach.
Illustration by Cath Virginia / The Verge | Photo from Getty Images

On Friday evening, Okta posted an odd update to its list of security advisories. The latest entry reveals that under specific circumstances, someone could’ve logged in by entering anything for a password, but only if the account’s username had over 52 characters.

According to the note people reported receiving, other requirements to exploit the vulnerability included Okta checking the cache from a previous successful login, and that an organization’s authentication policy didn’t add extra conditions like requiring multi-factor authentication (MFA).

Here are the details that are currently available:

On October 30, 2024, a vulnerability was internally identified in generating the cache key for AD/LDAP DelAuth. The Bcrypt algorithm was…

Continue reading…







    Get the daily email that makes reading the news actually enjoyable. Stay informed and entertained, for free.




    Your information is secure and your privacy is protected. By opting in you agree to receive emails from us. Remember that you can opt-out any time, we hate spam too!

    You May Also Like

    Investing

    Collaboratively administrate turnkey channels whereas virtual e-tailers. Objectively seize scalable metrics whereas proactive e-services.

    Investing

    Quickly coordinate e-business applications through revolutionary catalysts for change. Seamlessly underwhelm optimal testing procedures processes.

    Tech News

    Image: Scout Motors The VW-backed company is following in the footsteps of Tesla and Rivian by selling directly to customers without a dealership. Continue...

    Tech News

    UMG and AI company Klay are forming their own foundational Music-generating AI model. | Cath Virginia / The Verge | Photo from Getty Image...