1Password Details

    Organization Logo

    1Password

    Toronto, CA1900 employees • Information Technology

    Industry

    Information Technology

    Security Incidents

    1

    1Password is a technology company that specializes in providing secure password management solutions. Their software helps users store and manage their passwords and other sensitive information securely in one place, making it easier to access and manage various online accounts. The company focuses on simplicity and security, ensuring that even non-technical users can easily protect their digital information.

    Security Incidents

    1Password Breach of Sept 2023
    Severity Score
    Low to Moderate

    Type

    Unknown

    Summary

    On September 29, 2023, a security incident occurred when unauthorized access to an Okta tenant by a threat actor was detected via a suspicious email alert received by a member of the IT team. Preliminary investigations linked the breach to a compromised session in 1Password's Okta environment initiated from a suspicious IP, involving unauthorized actions like modifying identity providers and requesting admin reports, aimed at stealthily establishing a foothold for further attacks. Immediate security measures were taken to mitigate the incident, and ongoing investigations revealed that the brea...
    Show more

    Severity

    The breach was moderately severe as it involved unauthorized access to administrative functions within Okta, a critical security infrastructure for many organizations. Although the intruder was able to manipulate some settings and attempt to establish additional footholds, there is no evidence they accessed other systems or sensitive user data outside of Okta. Immediate security responses and subsequent measures helped contain the breach, minimizing potential damage.

    Impact

    The breach primarily impacted the internal operations of 1Password, specifically their use of the Okta service, which is a tool for managing access to applications and services securely. No 1Password user data or sensitive information was accessed or compromised, keeping customer information safe. The incident highlighted vulnerabilities in Okta's customer support systems, prompting both Okta and 1Password to enhance their security measures to prevent future breaches.

    KEEP YOUR ENVIRONMENT SECURE

    Weak credentials are the leading cause of breaches. Beyond Identity can help.

    See MFA exploits in action
    Watch how adversaries exploit companies in quick videos