Okta compromise (and HAR sanitizer for all) special edition

This is a special episode of “This Week in NET” dedicated to the recent Okta compromise, which has been making headlines and affecting Okta and its customers, including Cloudflare. Since it's October 31, 2023, we're also sharing some Halloween stories. João Tomé is joined by Sourov Zaman, our Incident Response Manager, to discuss how Cloudflare discovered and mitigated another Okta compromise.

We also provide general advice to companies on how to avoid compromises after security breaches and vulnerabilities, even when they stem from vendors. We explain how we ensured that no Cloudflare customer information or systems were impacted by this event, thanks to the real-time detection and swift actions taken by our Security Incident Response Team (SIRT). Our Zero Trust security posture and the use of hardware keys played a vital role.

Furthermore, we delve into how Cloudflare swiftly introduced a HAR Sanitizer tool, available to everyone at no cost, not just our customers. This tool was developed to enhance the security of HAR sharing and was introduced as a response to the recent Okta breach.

You can check the mentioned blog posts:

• How Cloudflare mitigated yet another Okta compromise
• Introducing HAR Sanitizer: secure HAR sharing

Cloudflare's Security Incident Response Team is hiring .