ITS Security is Monitoring Reported Okta Security Breach

March 25, 2022, 10:55 a.m. (ITS page updated)

Okta has confirmed that Iowa State accounts were not affected as part of their security compromise. The ITS Security team also reviewed Okta account activity logs and also came to the same conclusion. The team has concluded its investigation into this incident and does not plan to provide any additional updates. 


March 23, 2022, 9:40 a.m. (ITS page updated)

Okta posted update on their website.

Okta’s Investigation of the January 2022 Compromise


March 22, 2022, 3:00 p.m. (ITS page updated)

Okta posted update on their website.

Updated Okta Statement on LAPSUS$


March 22, 2022, 11:58 a.m.

Iowa State’s IT security team is monitoring reports that Okta, the company that provides our single sign-on solution, may have been compromised. Okta has made a public statement regarding the situation. We do not believe Iowa State was affected. No action is requested at this time.  

As we learn more, this page will be updated.