{"id":522849,"date":"2022-12-22T03:37:25","date_gmt":"2022-12-22T05:37:25","guid":{"rendered":"https:\/\/teknomers.com\/fr\/les-pirates-informatiques-violent-les-referentiels-github-dokta-et-volent-le-code-source\/"},"modified":"2022-12-22T03:37:26","modified_gmt":"2022-12-22T05:37:26","slug":"les-pirates-informatiques-violent-les-referentiels-github-dokta-et-volent-le-code-source","status":"publish","type":"post","link":"https:\/\/teknomers.com\/fr\/les-pirates-informatiques-violent-les-referentiels-github-dokta-et-volent-le-code-source\/","title":{"rendered":"Les pirates informatiques violent les r\u00e9f\u00e9rentiels GitHub d&#8217;Okta et volent le code source"},"content":{"rendered":"<p> <br \/>\n<\/p>\n<div>\n<p><span class=\"p-author\"><i class=\"icon-font icon-calendar\">\ue802<\/i><span class=\"author\">22 d\u00e9cembre 2022<\/span><i class=\"icon-font icon-user\">\ue804<\/i><span class=\"author\">Ravie Lakshmanan<\/span><\/span><span class=\"p-tags\">S\u00e9curit\u00e9 des logiciels \/ Violation des donn\u00e9es<\/span><\/p>\n<\/div>\n<div id=\"articlebody\">\n<div class=\"separator\" style=\"clear: both;\"><\/div>\n<p>Okta, une soci\u00e9t\u00e9 qui fournit des services de gestion des identit\u00e9s et des acc\u00e8s, a r\u00e9v\u00e9l\u00e9 mercredi que certains de ses r\u00e9f\u00e9rentiels de code source avaient \u00e9t\u00e9 consult\u00e9s de mani\u00e8re non autoris\u00e9e au d\u00e9but du mois.<\/p>\n<p>&#8220;Il n&#8217;y a aucun impact sur les clients, y compris les clients HIPAA, FedRAMP ou DoD&#8221;, a d\u00e9clar\u00e9 la soci\u00e9t\u00e9. <a rel=\"nofollow noopener\" href=\"https:\/\/sec.okta.com\/articles\/2022\/12\/okta-code-repositories\" target=\"_blank\">m&#8217;a dit<\/a> dans une d\u00e9claration publique.  &#8220;Aucune action n&#8217;est requise de la part des clients.&#8221;<\/p>\n<p>L&#8217;\u00e9v\u00e9nement de s\u00e9curit\u00e9, qui a \u00e9t\u00e9 <a rel=\"nofollow noopener\" href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/oktas-source-code-stolen-after-github-repositories-hacked\/\" target=\"_blank\">signal\u00e9 pour la premi\u00e8re fois<\/a> par Bleeping Computer, impliquait des acteurs de la menace non identifi\u00e9s acc\u00e9dant \u00e0 Okta Workforce Identity Cloud (<a rel=\"nofollow noopener\" href=\"https:\/\/www.okta.com\/workforce-identity\/\" target=\"_blank\">WIC<\/a>) r\u00e9f\u00e9rentiels de code h\u00e9berg\u00e9s sur GitHub.  L&#8217;acc\u00e8s a ensuite \u00e9t\u00e9 abus\u00e9 pour copier le code source.<\/p>\n<p>La plate-forme de gestion des identit\u00e9s bas\u00e9e sur le cloud a indiqu\u00e9 qu&#8217;elle avait \u00e9t\u00e9 alert\u00e9e de l&#8217;incident par GitHub, propri\u00e9t\u00e9 de Microsoft, d\u00e9but d\u00e9cembre 2022. Elle a \u00e9galement soulign\u00e9 que la violation n&#8217;avait pas entra\u00een\u00e9 d&#8217;acc\u00e8s non autoris\u00e9 aux donn\u00e9es des clients ou au service Okta.<\/p>\n<div class=\"ad_two clear\"><center class=\"cf\"><a rel=\"nofollow noopener\" href=\"https:\/\/go.thn.li\/uptycs-inside\" target=\"_blank\" title=\"CyberSecurity\"><img decoding=\"async\" alt=\"La cyber-s\u00e9curit\u00e9\" class=\"lazyload\" loading=\"lazy\" src=\"https:\/\/teknomers.com\/fr\/wp-content\/uploads\/2022\/12\/1670949871_285_De-graves-attaques-auraient-pu-etre-mises-en-scene-via.png\" width=\"728\" height=\"90\"\/><\/a><\/center><\/div>\n<p>Apr\u00e8s avoir d\u00e9couvert la d\u00e9faillance, Okta a d\u00e9clar\u00e9 qu&#8217;il avait impos\u00e9 des restrictions temporaires sur l&#8217;acc\u00e8s au r\u00e9f\u00e9rentiel et qu&#8217;il avait suspendu toutes les int\u00e9grations GitHub avec d&#8217;autres applications tierces.<\/p>\n<p>La soci\u00e9t\u00e9 bas\u00e9e \u00e0 San Francisco a en outre d\u00e9clar\u00e9 qu&#8217;elle avait examin\u00e9 les r\u00e9f\u00e9rentiels auxquels les intrus avaient acc\u00e9d\u00e9 et examin\u00e9 les r\u00e9cents engagements de code pour s&#8217;assurer qu&#8217;aucune modification inappropri\u00e9e n&#8217;avait \u00e9t\u00e9 apport\u00e9e.  Il a \u00e9galement fait tourner les informations d&#8217;identification GitHub et inform\u00e9 les forces de l&#8217;ordre du d\u00e9veloppement.<\/p>\n<p>&#8220;Okta ne compte pas sur la confidentialit\u00e9 de son code source pour la s\u00e9curit\u00e9 de ses services&#8221;, a not\u00e9 la soci\u00e9t\u00e9.<\/p>\n<p>L&#8217;alerte intervient pr\u00e8s de trois mois apr\u00e8s Auth0, qu&#8217;Okta a acquis en 2021, <a rel=\"nofollow noopener\" href=\"https:\/\/auth0.com\/blog\/auth0-code-repository-archives-from-2020-and-earlier\/\" target=\"_blank\">r\u00e9v\u00e9l\u00e9<\/a> un &#8220;\u00e9v\u00e9nement de s\u00e9curit\u00e9&#8221; concernant certaines de ses archives de r\u00e9f\u00e9rentiel de code de 2020 et ant\u00e9rieures.<\/p>\n<p>Okta est devenu une cible attrayante pour les attaquants depuis le d\u00e9but de l&#8217;ann\u00e9e.  Le groupe d&#8217;extorsion de donn\u00e9es LAPSUS$ a fait irruption dans les syst\u00e8mes internes de l&#8217;entreprise en janvier 2022 apr\u00e8s avoir obtenu un acc\u00e8s \u00e0 distance \u00e0 un poste de travail appartenant \u00e0 un ing\u00e9nieur de support.<\/p>\n<p>Puis, en ao\u00fbt 2022, Group-IB a mis au jour une campagne baptis\u00e9e 0ktapus ciblant un certain nombre d&#8217;entreprises, dont Twilio et Cloudflare, qui a \u00e9t\u00e9 con\u00e7ue pour voler les identifiants d&#8217;identit\u00e9 Okta des utilisateurs et les codes d&#8217;authentification \u00e0 deux facteurs (2FA).<\/p>\n<p><\/p>\n<div class=\"cf note-b\">Vous avez trouv\u00e9 cet article int\u00e9ressant ?  Suivez-nous sur <a rel=\"nofollow noopener\" href=\"https:\/\/twitter.com\/thehackersnews\" target=\"_blank\">Twitter <i class=\"icon-font icon-twitter\">\uf099<\/i><\/a>  et <a rel=\"nofollow noopener\" href=\"https:\/\/www.linkedin.com\/company\/thehackernews\/\" target=\"_blank\">LinkedIn<\/a> pour lire plus de contenu exclusif que nous publions.<\/div>\n<\/div>\n<p><script async src=\"https:\/\/platform.twitter.com\/widgets.js\" charset=\"utf-8\"><\/script><br \/>\n<br \/><br \/>\n<br \/><a href=\"https:\/\/thehackernews.com\/2022\/12\/hackers-breach-oktas-github.html\" rel=\"nofollow noopener\" target=\"_blank\">ttn-fr-57<\/a><\/p>\n","protected":false},"excerpt":{"rendered":"<p>\ue80222 d\u00e9cembre 2022\ue804Ravie LakshmananS\u00e9curit\u00e9 des logiciels \/ Violation des donn\u00e9es Okta, une soci\u00e9t\u00e9 qui fournit des services de gestion des identit\u00e9s et des acc\u00e8s, a r\u00e9v\u00e9l\u00e9 mercredi que certains de ses r\u00e9f\u00e9rentiels de code source avaient \u00e9t\u00e9 consult\u00e9s de mani\u00e8re non autoris\u00e9e au d\u00e9but du mois. &#8220;Il n&#8217;y a aucun impact sur les clients, y [&hellip;]<\/p>\n","protected":false},"author":1,"featured_media":522850,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[6],"tags":[5597,4168,4158,4165,4161,103267,50438,8154,4157,4159,4171,4170,65,4167,4160,4163,4162,4394,58986,4172,4169,11137,4166,8510,21353,4164],"class_list":["post-522849","post","type-post","status-publish","format-standard","has-post-thumbnail","hentry","category-technologie","tag-code","tag-comment-pirater","tag-cyber-actualites","tag-cyber-attaques","tag-cyber-mises-a-jour","tag-dokta","tag-github","tag-informatiques","tag-lactualite-de-la-cybersecurite","tag-lactualite-de-la-cybersecurite-aujourdhui","tag-lactualite-des-hackers","tag-la-securite-des-informations","tag-les","tag-logiciel-malveillant-de-ransomware","tag-mises-a-jour-de-la-cybersecurite","tag-nouvelles-de-piratage","tag-nouvelles-de-pirates","tag-pirates","tag-referentiels","tag-securite-informatique","tag-securite-internet","tag-source","tag-violation-de-donnees","tag-violent","tag-volent","tag-vulnerabilite-logicielle"],"_links":{"self":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/522849","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/users\/1"}],"replies":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/comments?post=522849"}],"version-history":[{"count":0,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/posts\/522849\/revisions"}],"wp:featuredmedia":[{"embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media\/522850"}],"wp:attachment":[{"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/media?parent=522849"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/categories?post=522849"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/teknomers.com\/fr\/wp-json\/wp\/v2\/tags?post=522849"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}