Okta threat watch

Okta and Datadog have collaborated to enhance the Out-of-the-Box (OotB) detection capabilities of Datadog’s Cloud SIEM by including rules from the Okta Security Detection Catalog. These rules have been engineered to enable the identification of identity-related threats with minimal configuration.

Okta Verify has a neat trick under the hood that can help you identify the use of personal AI assistants and other "not just yet" software.

Version 1.1 of the Okta Security Technical Implementation Guide (STIG) provides U.S. government agencies additional hardening recommendations related to network security and non-human identities.

Okta and its customers are benefitting from "pooled" security audits.

Temporary Access Codes provide an opportunity to constrain the ability of help desk staff to reset user passwords and MFA factors.

Read on for Okta’s response to React2Shell (CVE-2025-55182) and to learn more about actions required by developers.

Take a peek inside the latest AitM phishing kit.

Russia-linked campaign targets hospitality and vacation rental providers.

The Auth0 Customer Detection Catalog is an open-source repository of detection rules designed to help the security teams at Auth0 customers to proactively identify and respond to security threats.

The world needs a better way to manage app-to-app access.

ClickFix campaigns exploit user trust and problem-solving instincts to bypass conventional security measures.

Okta has completed another pooled audit, leading the industry by transforming traditional one-to-one assessments into a collaborative, industry-first approach. This new model not only streamlines the audit experience but delivers impact: 90% of participating customers reported significantly greater confidence in demonstrating compliance.

The days when the name of your childhood best friend or your first car model provided enough assurance to validate your identity are long gone. That’s where Caller Verify can help.

ISO/IEC 27001 is a globally recognized security standard. This blog introduces a new Factsheet that provides guidance on how Okta can support organizations of any size in achieving or maintaining compliance to the ISO/IEC 27001:2022 standard.

A one-year progress update on Okta's commitment to the CISA Secure by Design Pledge.

Introducing the Okta Security Detection Catalog, a repository of detection queries designed to help Okta customers.

This is the third iteration in our blog series. This blog article explores how the Okta Security Customer Audit further enhances the Customer Trust function, driving even greater transparency and confidence in our security practices to meet our customers' regulatory and compliance requirements.

Okta recently announced our partnership with DISA, which has resulted in the release of the Okta Identity as a Service (IDaaS) Security Technical Implementation Guide (STIG) an an effort to secure baselines for the industry.

This blog article provides a brief overview of the DORA regulation, outlines how Okta can support compliance adherence, and introduces our new Factsheet, a helpful resource for satisfying DORA's regulated requirements.

Nobody does GenAI quite like a fake IT worker.