Okta Data Breach Investigation

Turke & Strauss LLP, a leading data breach law firm, is investigating Okta, Inc. regarding its recent data breach. The Okta data breach involved sensitive personal identifiable information and protected health information belonging to over 4,900 current and former employees.


Okta is a California software development company focused on identity software. Accordingly, Okta offers identity solutions to its customers, allowing them to safely use technology anywhere and using any devise. Specifically, Okta facilitates secure access and access management for its customers through its Customer Identity Cloud and Workforce Identity Cloud products. In 2021, Okta acquired Auth0, an identity platform for application teams, enhancing Okta’s suite of identity solutions. In 2009, Okta was founded after one of the company’s owners, Todd McKinnon, pitched the company idea to his wife. Today, Okta is a publicly traded company with over $9 billion in assets and over $1.8 in annual revenue. Headquartered in San Franciso, California, Okta has 24 locations across the globe and employ over 6,000 individuals.


On October 12, 2023, Okta discovered that one of its third-party vendors, Rightway Healthcare, Inc., had experienced a data breach in which the sensitive personal identifiable information and protected health information belonging to Okta employees may have been accessed. Through its investigation, Rightway Healthcare determined that an unauthorized actor may have accessed this sensitive information on September 23, 2023. On November 2, 2023, Okta began contacting individuals whose information may have been impacted. The type of information exposed includes:

  • Name
  • Social Security number
  • Health insurance information

If you received a breach notification letter from Okta, Inc.:

We would like to speak with you about your rights and potential legal remedies in response to this data breach. Please fill out the form, below, or contact us at (608) 237-1775 or sam@turkestrauss.com.

If you were impacted by the Okta data breach, you may consider taking the following steps to protect your personal information.

  1. Carefully review the breach notice and retain a copy;
  2. Enroll in any free credit monitoring services provided by Okta, Inc.;
  3. Change passwords and security questions for online accounts;
  4. Regularly review account statements for signs of fraud or unauthorized activity;
  5. Monitor credit reports for signs of identity theft; and
  6. Contact a credit bureau(s) to request a temporary fraud alert.

Share This Post: