Okta leak results in a $2 billion loss
Okta announced it had identified “adversarial activity”, which resulted in access to a stolen credential and their support case management system. While Okta’s release is scant on details, they have released the affected IP addresses1. The impact of this leak is far ranging, from password managers2 to casino3 managers.
The irony of a preeminent identity provider being breached via stolen credentials is amusing, sure, but it’s also a good reminder: AuthN is a difficult, immense responsibility that we all bear in order to avoid such incidents.
Californians gain the right to be forgotten... in 2026
New privacy legislation, appropriately named the Delete Act4, gives Californians the ability to request their PII be deleted by any data brokers. This seems like great news, until you get to the caveats: the law only applies to data brokers registered in California, and it doesn’t take effect until 2026. Still, we applaud this (baby) step in the right direction.
Password guru admits he goofed
We’ve said it once and we’ll say it again - “p@$$w0rd” is no more secure than simply making your password “password”. And now, the BBC5 agrees. Random strings of words take longer to guess in brute force attacks, and password managers are still the gold standard as users only need to remember a single password (or remember where they placed a single sticky note).
How we saved 50% on AWS RDS with Aurora I/O Optimized
From the mouth of our very own AWS gurus, learn how Rewind reduced our AWS RDS spend by 50% with Aurora I/O Optimized.