Okta breach


Okta’s source code has been stolen after GitHub repositories were hacked.

Firstly, I applaud that Okta has not tried to cover this incident up, it shows a high level of maturity and ownership.

I imagine that whoever was able to gain access to the source code is now reviewing that code for security related issues.  If history has taught us anything is that writing secure code is very difficult, it’s also proven difficult to secure the hosting and management of code.

Moving forward, I would implore all code creators to secure access to their code and their repositories, it might sound obvious but following the principle of least privilege and defence in depth is as important now as it’s ever been.