Bloomberg Snippet

Markets

Wall Street Bosses See Financial Dangers Everywhere

3 hours ago

HK Summit Latest: Goldman Sees Better Capital Markets Outlook

Nothing Worries CEOs Right Now as Much as Geopolitics

Ken Griffin Says Global Investors Have to Invest in China

Markets

WeWork Goes Bankrupt, Signs Pact With Creditors to Cut Debt

It struggled to recover from the pandemic and its failed IPO in 2019.

Markets

UBS Sees Progress on Winning Back Clients Amid Quarterly Loss

The Zurich-based bank said it had a net loss of $785 million for the three months to September.

updated an hour ago

Markets

Aramco Keeps $29 Billion Payout Even as Oil Production Falls

Saudis extending production cuts to year-end to support market.

updated an hour ago

Business

Outgoing Morgan Stanley CEO Gorman Signals He’ll Step Down as Chair in 2024

“I’ll certainly stay most of the year, if not the whole year."

updated 45 minutes ago

The Big Take

Elon Musk’s Brain Implant Startup Is About to Start Cutting

By Ashlee Vance

LIVE

LIVE ON BLOOMBERG TV

The Pulse with Francine Lacqua

Politics

Trump Shouts at Judge and Lawyers in Wild Day on Witness Stand

Markets

US Debt Interest Bill Rockets Past a Cool $1 Trillion a Year

Premature to Call Peak in Bond Yields: Strategas’ Verrone

LESSON-OF-THE-DAY: Companies Finally Face Consequences for Alleged Cybersecurity Lapses... POSTMORTEM BUCK PASSING | Ars Technica

Okta’s lack of visibility into its network is another failing that, while not a cause of the breach, allowed it to be much worse than it would have been had the access been spotted sooner.  

No, Okta, senior management, not an errant employee, caused you to get hacked

If a transgression by a single employee breaches your network, you're doing it wrong.

DAN GOODIN - 11/3/2023, 5:31 PM

Enlarge

Omar Marques/SOPA Images/LightRocket via Getty Images

156WITH

Identity and authentication management provider Okta on Friday published an autopsy report on a recent breach that gave hackers administrative access to the Okta accounts of some of its customers. 

• While the postmortem emphasizes the transgressions of an employee logging into a personal Google account on a work device, the biggest contributing factor was something the company understated: a badly configured service account.

In a post, Okta chief security officer David Bradbury said that the most likely way the threat actor behind the attack gained access to parts of his company’s customer support system was by first compromising an employee’s personal device or personal Google account and, from there, obtaining the username and password for a special form of account, known as a service account, used for connecting to the support segment of the Okta network. Once the threat actor had access, they could obtain administrative credentials for entering the Okta accounts belonging to 1Password, BeyondTrust, Cloudflare, and other Okta customers.

Passing the buck

“During our investigation into suspicious use of this account, Okta Security identified that an employee had signed-in to their personal Google profile on the Chrome browser of their Okta-managed laptop,” Bradbury wrote. “The username and password of the service account had been saved into the employee’s personal Google account. The most likely avenue for exposure of this credential is the compromise of the employee’s personal Google account or personal device.”

This means that when the employee logged into the account on Chrome while it was authenticated to the personal Google account, the credentials got saved to that account, most likely through Chrome’s built-in password manager. Then, after compromising the personal account or device, the threat actor obtained the credentials needed to access the Okta account.
Accessing personal accounts at a company like Okta has long been known to be a huge no-no. And if that prohibition wasn’t clear to some before, it should be now. The employee almost surely violated company policy, and it wouldn’t be surprising if the offense led to the employee’s firing.
However, it would be wrong for anyone to conclude that employee misconduct was the cause of the breach. It wasn’t. The fault, instead, lies with the security people who designed the support system that was breached, specifically the way the breached service account was configured. . .

READ more >> Ars Technica

564. How to Succeed at Failing, Part 4: Extreme Resiliency | Freakonomic...

Bloomberg Snippet:

Markets

Hedge Funds Catapulted Treasury Shorts to Record at Wrong Time

Stocks Hold Gains After Big Rally on Fed Rates: Markets Wrap

Korea Slams Banks, Hedge Funds With Ban on Short Selling Ahead of Elections

The Price of Money Is Going Up, and It’s Not Only Because of the Fed

Politics

Yellen to Meet With China Counterpart This Week Before Biden-Xi Talks at APEC Summit

Officials to discuss economy, global challenges over two days.

an hour ago

Markets

SEC Rule to Speed Trades Puts $1 Trillion of ETFs at Risk

Funds with overseas assets will be hit by faster settlement.

40 minutes ago

Markets

BlackRock’s Boivin Says High Rates Still a Threat to Stock Rally

“We think there’s more downward adjustment to come."

4 hours ago

Technology

AI Pioneer Kai-Fu Lee Builds $1 Billion Startup in Eight Months

The Chinese startup has become a unicorn in less than eight months.

Everything in Motion All-At-Once

 

Duluth News Tribune

20 hours ago

Editorial cartoon for Sunday, Nov. 5, 2023 - Duluth News Tribune | News, weather, and sports from Duluth, Minnesota

Visit