On November 29, 2023, Workiva received notification from Okta, our identity & access management vendor, that Workiva was impacted by a security event that resulted in unauthorized access to Okta’s customer support system. A threat actor ran and downloaded a report that contained the names and email addresses of some Workiva employees with accounts in Okta’s customer support system.
Workiva has reset all privileged accounts in Okta (these associates have no access to customer data) and as part of Workiva’s information security program, Workiva had already implemented Okta’s recommended actions, including required MFA (Okta Verify) for all users, implemented their session binding, enforced session timeouts, and assessing our associates with monthly phishing campaigns.
We have reached out to our third-party suppliers that utilize Okta to better understand how they may have been affected. We will continue to monitor the situation and work closely with our third-party vendors as more information becomes available from Okta.
For more information about this event, please see the Okta Security Advisory: https://sec.okta.com/harfiles