logo
welcome
About us
Newsletter
News Widget
Media Inquiries

Summary

Engadget

Engadget

Okta vulnerability allowed accounts with long usernames to log in without a password

Engadget
Summary
Nutrition label

75% Informative

Okta has revealed that its system had a vulnerability that allowed people to log in without having to provide the correct password.

Okta bypassed password authentication if the account had a username that had 52 or more characters.

The company has admitted that the vulnerability was introduced as part of a standard update that went out on July 23, 2024 .

VR Score

69

Informative language

66

Neutral language

17

Article tone

informal

Language

English

Language complexity

65

Offensive language

not offensive

Hate speech

not hateful

Attention-grabbing headline

not detected

Known propaganda techniques

not detected

Time-value

short-lived

External references

3

https://www.theverge.com/2024/11/1/24285874/okta-52-character-login-password-authentication-bypasshttps://x.com/kmcquade3/status/1852475962715246869https://trust.okta.com/security-advisories/okta-ad-ldap-delegated-authentication-username/

Source diversity

3

www.theverge.comx.comtrust.okta.com

Affiliate links

no affiliate links

Read full article