Rankiteo Logo
Rankiteo
Leader in Cyber Underwriting
Loading...
NEWRankiteo Cyber Underwriting Desktop - Score, price, and bind from your desktop
WindowsmacOSLinux
Download
okta

okta Vendor Cyber Rating & Cyber Score

okta.com.de
in
Add Your Compliance Badge
ISO 27001
SOC 2 Type 1
SOC 2 Type 2
PCI DSS
HIPAA
GDPR

okta ist ein Unternehmen, dass sich auf New Urbansim und Stadtforschung spezialisiert. Existierende Stadtstrukturen werden analysiert und in der Planung angewendet.


okta A.I CyberSecurity Scoring

Incident Details
okta
Company Information
Website:http://okta.com.de
Employees number:3
Number of followers:0
NAICS:54131
Industry Type:Architecture and Planning
Homepage:okta.com.de
Cyber Premium EstimationGet Supply Chain
okta Risk Score (AI oriented)
Between 750 and 799
logo
oktaArchitecture and Planning
Updated:
04/04/2026
774/1000
Fair
Baa
AaaAaABaaBaBCaaCaC
Powered by our proprietary A.I cyber incident model
Insurance prefers TPRM score to calculate premium
okta Global Score (TPRM)
xxxx
logo
oktaArchitecture and Planning
•••
Score locked
Instant access to detailed risk factors
Vulnerabilities
Benchmark vs. industry & size peers
Findings

okta
oktaFair
Current Score
774Baa (FAIR)
01000
1 incidents
-13 avg impact
Incident timeline with MITRE ATT&CK tactics, techniques, and mitigations.
JUNE 2026
783Before Incident
MAY 2026
776Before Incident
APRIL 2026
769Before Incident
MARCH 2026
769Before Incident
FEBRUARY 2026
775Before Incident
JANUARY 2026
788Before Incident
Cyber Attack
23 Jan 2026okta
Okta, Salesforce and Google: ShinyHunters claim to be behind SSO-account data theft attacks

ShinyHunters Gang Behind Vishing Attacks Targeting SSO Accounts at Okta, Microsoft, and Google

775After Incident
CRITICAL-13
OKTSALGOO1769222214
ShinyHunters Gang Behind Vishing Attacks Targeting SSO Accounts at Okta, Microsoft, and Google The extortion group ShinyHunters has claimed responsibility for a series of voice phishing (vishing) attacks targeting single sign-on (SSO) accounts at Okta, Microsoft Entra, and Google, enabling threat actors to breach corporate SaaS platforms and steal data for extortion. In these attacks, cybercriminals impersonate IT support staff, calling employees and tricking them into entering credentials and multi-factor authentication (MFA) codes on phishing sites mimicking legitimate login portals. Once compromised, the attackers gain access to the victim’s SSO account, which often serves as a gateway to connected enterprise applications, including Salesforce, Microsoft 365, Google Workspace, Dropbox, Slack, and Atlassian. The phishing kits used in these attacks feature real-time control panels, allowing attackers to dynamically adjust phishing pages during calls prompting victims to approve MFA requests or enter one-time codes as needed. Okta confirmed the use of such kits in a recent report, though it declined to comment on the breaches themselves. ShinyHunters told BleepingComputer that it is behind some of the attacks, with Salesforce as its primary target, though other platforms are also exploited. The group leverages stolen employee data including phone numbers, job titles, and names from previous breaches to make social engineering calls more convincing. Recent victims listed on ShinyHunters’ Tor data leak site include SoundCloud, Betterment, and Crunchbase. While SoundCloud and Betterment had previously disclosed breaches, Crunchbase confirmed a new incident involving data exfiltration from its corporate network, though no operational disruptions occurred. The company has engaged cybersecurity experts and law enforcement. Microsoft and Google have not reported evidence of their products being abused in the campaign, with Google stating it has no indication its systems were affected. ShinyHunters disputed Okta’s attribution of a specific phishing kit, claiming its infrastructure was built in-house.
INCIDENT DETAILS -
TYPE
Vishing (Voice Phishing)
MOTIVATION
Extortion, Data Theft
IMPACT
Data Compromised: Corporate data, Employee credentials, MFA codesSSO AccountsSaaS Platforms (Salesforce, Microsoft 365, Google Workspace, Dropbox, Slack, Atlassian)Operational Impact: Data exfiltration, Unauthorized access to corporate networksBrand Reputation Impact: Potential reputational damage due to data breachesIdentity Theft Risk: High (stolen employee and customer data)
DATA BREACH
Employee credentialsMFA codesCorporate dataSensitivity Of Data: High (Personally Identifiable Information, Corporate Data)Data Exfiltration: YesPersonally Identifiable Information: Employee data (phone numbers, job titles, names)
REFERENCES
Blog URLSource URL
DECEMBER 2025
788Before Incident
NOVEMBER 2025
788Before Incident
OCTOBER 2025
788Before Incident
SEPTEMBER 2025
788Before Incident
AUGUST 2025
788Before Incident
JULY 2025
788Before Incident

Frequently Asked Questions

?
What is the current A.I Rankiteo Cyber Score for okta ?
?
What was okta's A.I Rankiteo Cyber Score in May 2026 ?
?
What was okta's A.I Rankiteo Cyber Score in April 2026 ?
?
What was okta's A.I Rankiteo Cyber Score in March 2026 ?
?
What was okta's A.I Rankiteo Cyber Score in February 2026 ?
?
What was okta's A.I Rankiteo Cyber Score in January 2026 ?
?
What was okta's A.I Rankiteo Cyber Score in December 2025 ?
?
What was okta's A.I Rankiteo Cyber Score in November 2025 ?
?
What was okta's A.I Rankiteo Cyber Score in October 2025 ?
?
What was okta's A.I Rankiteo Cyber Score in September 2025 ?
?
What was okta's A.I Rankiteo Cyber Score in August 2025 ?
?
What was okta's A.I Rankiteo Cyber Score in July 2025 ?
?
What is the average per-incident point impact on okta's A.I Rankiteo Cyber Score over the past 12 months ?
?
Where can I access detailed records of all cyber incidents associated with okta ?
?
Where can I find a summary of the A.I Rankiteo Risk Scoring methodology ?
?
Where can I view okta's profile page on Rankiteo ?
?
How accurate is the A.I Rankiteo Risk Scoring methodology ?
okta Cyber Scoring History | Rankiteo