Version 1.1 of the Okta Security Technical Implementation Guide (STIG) provides U.S. government agencies additional hardening recommendations related to network security and non-human identities.

Okta and its customers are benefitting from "pooled" security audits.

Temporary Access Codes provide an opportunity to constrain the ability of help desk staff to reset user passwords and MFA factors.

Read on for Okta’s response to React2Shell (CVE-2025-55182) and to learn more about actions required by developers.

Take a peek inside the latest AitM phishing kit.

Russia-linked campaign targets hospitality and vacation rental providers.

The Auth0 Customer Detection Catalog is an open-source repository of detection rules designed to help the security teams at Auth0 customers to proactively identify and respond to security threats.

The world needs a better way to manage app-to-app access.

ClickFix campaigns exploit user trust and problem-solving instincts to bypass conventional security measures.

Okta has completed another pooled audit, leading the industry by transforming traditional one-to-one assessments into a collaborative, industry-first approach. This new model not only streamlines the audit experience but delivers impact: 90% of participating customers reported significantly greater confidence in demonstrating compliance.