"1Password, a password manager used by millions of people and more than 100,000 businesses, said it detected suspicious activity on a company account provided by Okta, the identity and authentication service that disclosed a breach on Friday." “On September 29, we detected suspicious activity on our Okta instance that we use to manage our employee-facing apps,” 1Password CTO Pedro Canahuati wrote in an email. “We immediately terminated the activity, investigated, and found no compromise of user data or other sensitive systems, either employee-facing or user-facing.” https://arstechnica.com/security/20...icious-activity-in-its-internal-okta-account/
Yes, it sounds a lot like what happened to LastPass. Bottom line is that you should never blindly rely on cloud based password managers, because they rely on companies like Twilio and Okta to secure them, which in turn apparently rely on inferior MFA technology. So occasionally they get hacked themselves, what a joke!
