Okta concludes investigation into Jan 2022 vendor compromise; impact far less than initially feared

Okta, Inc.

Threat actor controlled a single third-party vendor workstation for 25 minutes on Jan 21, 2022.
Accessed two active customer tenants in SuperUser app; viewed limited info in Slack and Jira.
No successful configuration changes, MFA/password resets, or customer impersonation events.
Threat actor could not authenticate directly to any Okta accounts.
Company continues to consider the incident not material.

This headline and bullets were generated automatically by deepseek-v4-flash:cloud@v2 from the public filing. Read the source on SEC.gov before relying on any specific claim. Not investment advice. See methodology for how this pipeline works.