Who's Behind the Okta Hack?
Uncanny Valley | WIRED
WIRED
4.1 • 572 Ratings
🗓️ 1 April 2022
⏱️ 30 minutes
🧾️ Download transcript
Summary
Even if you aren't familiar with Okta, you've probably used it. The digital login system is used by thousands of companies across the world to manage employee logins to various cloud services. Which makes it a real problem when that system, and all that login info, gets hacked.
This week on Gadget Lab, WIRED senior writer Lily Hay Newman joins the show to tell us about the group behind the recent Okta hack, how the hackers took control of such a vast system, and what happened in the aftermath.
Show Notes:
Read all Lily’s stories about the Lapsus$ Okta hack. This episode was recorded and scheduled shortly before news broke that two teenagers in the UK have been charged in connection with the hacks.
Recommendations:
Lily recommends setting up two-factor authentication on all your services. (Here’s how!) Mike recommends the podcast Poog with Kate Berlant and Jacqueline Novak.
Lily Hay Newman can be found on Twitter @lilyhnewman. Michael Calore is @snackfight. Lauren Goode is @LaurenGoode. Bling the main hotline at @GadgetLab. The show is produced by Boone Ashworth (@booneashworth). Our theme music is by Solar Keys.
Learn about your ad choices: dovetail.prx.org/ad-choices
Transcript
Click on a timestamp to play from that location
| 0:00.0 | Hi, everyone. Welcome to Gadget Lab. I'm Michael Colori. I'm a senior editor here at Wired. |
| 0:11.8 | Lauren Good is out this week. She will be back next time. But joining me today is Wired senior writer, Lily Hey Newman. |
| 0:19.1 | Hi, Lily. Hello. I'm happy to be here. Well, thanks for, |
| 0:22.9 | being here. It's just the two of us this week, so hopefully we can keep things interesting for everybody. |
| 0:27.6 | I know. I feel Lauren's absence keenly. I'm alone in a room with the producer, so I do as well. |
| 0:35.7 | Lily, we wanted to have you on this week because you just wrote a series of big stories for Wired about the recent hack of the digital identity provider, Octa, and the group of hackers who claimed responsibility, a group that calls itself Lapsus. That's L-A-P-S-U-S-S-Dolar sign. |
| 0:52.5 | Obviously. |
| 0:53.6 | Obviously. |
| 0:54.7 | We hear a lot of stories about corporate hacking, ransomware attacks, and data breaches. |
| 0:59.7 | And while all of those stories are concerning for sure, this particular hack is |
| 1:03.6 | especially troubling because of the target. |
| 1:06.3 | Octa is a service that thousands of businesses and organizations use to manage their |
| 1:10.4 | employees' logins |
| 1:11.4 | to their various cloud services. Now, we have you on the show this week to walk us through |
| 1:15.4 | the timeline here and to help us get a sense of the scope of this hack. So in order to better |
| 1:20.0 | understand all of that, I want to start by talking about the target. We use Octahear at |
| 1:25.0 | Wired every day, and many of our listeners are deeply familiar with it. |
| 1:29.5 | But for those who aren't familiar, can you tell us what is Octa? |
| 1:33.4 | Yeah. |
| 1:34.3 | So, ACTA is, as you said, an identity management platform. |
| 1:39.3 | So basically, the concept is if you're a business and your employees need to use lots of different cloud |
| 1:47.0 | platforms and services to do their jobs. So right, there's email, but then there's also, let's say, |
... |
Please login to see the full transcript.
Disclaimer: The podcast and artwork embedded on this page are from WIRED, and are the property of its owner and not affiliated with or endorsed by Tapesearch.
Generated transcripts are the property of WIRED and are distributed freely under the Fair Use doctrine. Transcripts generated by Tapesearch are not guaranteed to be accurate.
Copyright © Tapesearch 2026.