#HelpdeskHacks

Don't just take our word for it.

Companies with industry-leading security have suffered from this new attack vector that exploits a loophole: attacking IT service desk employees that have:

1. The power to grant account access.
2. A constant flow of real users reporting lockouts from lost MFA devices.
3. No tools to tell them apart.

October 5, 2023

Clorox says sales and profit took a big hit from cyberattack

"The bleach and cleaning products maker said it expects net sales to decrease 23% to 28%"

September 14, 2023

Caesars Entertainment Confirms Hack in Second Recent Casino Attack

"the late-August attack left Caesars Entertainment forking over tens of millions of dollars to the hackers ... this social engineering attack involved a hacker posing as an employee to get the IT contractor to change a password"

September 13, 2023

MGM Grand Cyberattack Allegedly Caused by 10-Minute Phone Call

"All ALPHV ransomware group did to compromise MGM Resorts was hop on LinkedIn, find an employee, then call the Help Desk”

September 2, 2023

Okta Warns of Social Engineering Attacks Targeting Super Administrator Privileges

"In recent weeks, multiple U.S.-based Okta customers have reported a consistent pattern of social engineering attacks against IT service desk personnel, in which the caller's strategy was to convince service desk personnel to reset all MFA factors enrolled by highly privileged users"

Okta Breach Report: Timeline & Updated Impacts

Okta is having a rough 2023. How did we get here, and what should Okta customers do protect themselves?