The password authenticator was hit by a cyberattack in September and said earlier this month that just 1% of its customers were affected.
David Bradbury, Okta's chief security officer, said in the post: "While we do not have direct knowledge or evidence that this information is being actively exploited, there is a possibility that the threat actor may use this information to target Okta customers via phishing or social engineering attacks."
Bradbury advised all customers to use multi-factor authentication, which requires more than one security test, to keep their information safe online.
San Francisco-based Okta offers companies identity management tools including single sign-in and multi-factor authentication for secure website logins.
The company has more than 18,000 corporate clients including FedEx, S&P Global, T-Mobile and Zoom, per its website.
Then in August hacking group Scatter Swine gained access to Okta customer data, it claimed in a blog post, breaching more than 100 companies including software firm Twilio.Okta didn't immediately respond to a request for comment from Business Insider, made outside normal working hours.
The original article contains 249 words, the summary contains 172 words. Saved 31%. I'm a bot and I'm open source!