1Password was just breached by hackers, but your logins are …

Security credentials like usernames and passwords are an attractive target for hackers, and even the best password managers can come under threat from time to time. This was the case with popular password manager 1Password, which recently revealed (via Bleeping Computer) that it had been breached by malicious hackers.

Fortunately, it doesn’t appear that any customer data was stolen, so if you use 1Password, your login information should be safe for now. That said, it’s always a good idea to regularly update your passwords (or use a passkey) in case they fall into the wrong hands.

A mysterious man typing by hand on a laptop computer at night.
Andrew Brooks/Getty Images

In a blog post on its website, 1Password explained the situation. “We have detected suspicious activity on our Okta instances related to their support systems incident,” 1Password said. “After a thorough investigation, we concluded that no 1Password user data was accessed.”

After discovering the suspicious activity on September 29, 1Password “immediately terminated the activity, investigated, and found no compromise of user data or other sensitive systems, employee-facing or user-facing.”

okta connection

A person sitting at a desk using 1Password on a desktop all-in-one computer.  There are two laptops on the desk next to them.
1Password/AgileBits

The link with Okta is interesting because it highlights a major vulnerability. Okta helps companies manage their users and ensure everyone can log in securely, and it also provides support for this process. As part of this, customers sometimes upload file archives to help diagnose problems, but these archives may contain sensitive data such as session tokens and login data.

According to a detailed report from 1Password, a hacker stole a session cookie from a 1Password IT employee, then attempted to access the worker’s dashboard and requested a list of administrator users. Fortunately, the first action was blocked by Okta, while the second action caused an automated email to be sent to other 1Password administrators, alerting them to the breach.

While your login information is secure – no user data appears to have been accessed by the hacker – it shows how easily secure systems can be broken into by bad actors. In response to the incident, 1Password says it has reduced the number of ‘Super Admin’ users, implemented stricter login rules for admins, and more.

Despite this episode, you should still choose one of the best password managers to keep your login data safe. After all, using an app to create and store unique passwords for you is much more secure than using the same easily guessable login information for every account.






Related Posts

Leave a Reply