secwatch.observer — SEC 8-K summary
======================================

Issuer:     Okta, Inc. (OKTA)
CIK:        0001660134
Form:       8-K
Filed at:   2022-03-25T23:59:59+00:00
Accession:  0001193125-22-085134
Event type: cyber
Sentiment:  negative
Materiality: 0.65
Item codes: 8.01, 9.01
LLM model:  deepseek-v4-flash:cloud@v2

Okta reports cyber breach via third-party vendor affecting 366 customers (2.5% of tenants)
--------------------------------------------------------------------------------

- Cybercrime group accessed third-party vendor's environment used for Okta customer support; 5-day window Jan 16-21, 2022.
- Up to 366 Okta tenants (2.5% of customers) were accessible; vendor's incident is remediated and not ongoing.
- Support engineers cannot create/delete users, download databases, or access source code; but can reset passwords and MFA factors.
- Okta's service remains fully operational; company does not consider incident material.
- Okta issued blog posts on March 22 and 23, 2022 with details; continues investigating and communicating with customers.

Source:
  EDGAR index:    https://www.sec.gov/Archives/edgar/data/1660134/000119312522085134/0001193125-22-085134-index.htm
  Primary doc:    https://www.sec.gov/Archives/edgar/data/1660134/000119312522085134/d314542d8k.htm
  HTML page:      https://secwatch.observer/filing/0001193125-22-085134

License: Source filings: public domain (SEC EDGAR). Summaries (headline + bullets): CC-BY-4.0; attribute https://secwatch.observer