Okta has a standard process that can be abused for nefarious purposes. The legitimate method for changing credential details within Okta (for example, if a person gets married and changes her last name and adopts a new email address) can be misused by an attacker to impersonate another existing user.
- Posted on
- By SecurityIT
- In Identity & Access, NEWS & INDUSTRY, Vulnerabilities
