---
schema_version: "secwatch.filing_event.v1"
accession: "0001193125-22-085134"
form_type: "8-K"
ticker: "OKTA"
cik: "0001660134"
company_name: "Okta, Inc."
filed_at: "2022-03-25T23:59:59+00:00"
generated_at: "2026-06-26T17:27:43.594688+00:00"
event_type: "cyber"
sentiment: "negative"
materiality_score: 0.65
calibrated_materiality_score: 0.65
confidence: "high"
source: SEC EDGAR
---

# Okta reports cyber breach via third-party vendor affecting 366 customers (2.5% of tenants)

## Summary
- Cybercrime group accessed third-party vendor's environment used for Okta customer support; 5-day window Jan 16-21, 2022.
- Up to 366 Okta tenants (2.5% of customers) were accessible; vendor's incident is remediated and not ongoing.
- Support engineers cannot create/delete users, download databases, or access source code; but can reset passwords and MFA factors.
- Okta's service remains fully operational; company does not consider incident material.
- Okta issued blog posts on March 22 and 23, 2022 with details; continues investigating and communicating with customers.

## SEC filing metadata
- accession: 0001193125-22-085134
- form_type: 8-K
- ticker: OKTA
- cik: 0001660134
- company_name: Okta, Inc.
- filed_at: 2022-03-25T23:59:59+00:00
- event_type: cyber
- sentiment: negative
- materiality_score: 0.65
- calibrated_materiality_score: 0.65
- confidence: high
- sec_items: 8.01, 9.01
- EDGAR index: https://www.sec.gov/Archives/edgar/data/1660134/000119312522085134/0001193125-22-085134-index.htm
- EDGAR primary document: https://www.sec.gov/Archives/edgar/data/1660134/000119312522085134/d314542d8k.htm

## Machine-readable alternates
- HTML: https://secwatch.observer/filing/0001193125-22-085134
- JSON: https://secwatch.observer/filing/0001193125-22-085134.json
- Plain text: https://secwatch.observer/filing/0001193125-22-085134.txt

This AI-assisted summary is a reading aid. Review the linked SEC EDGAR filing before relying on any specific claim.