Tag

Risk-Framework

1 brief RSS

Okta User Risk Threshold Exceeded via Aggregated Suspicious Activities

This correlation identifies when a user exceeds a risk threshold based on multiple suspicious Okta activities by aggregating risk events from 'Suspicious Okta Activity,' 'Okta Account Takeover,' and 'Okta MFA Exhaustion' analytic stories, highlighting potentially compromised user accounts exhibiting multiple TTPs that could lead to unauthorized access, privilege escalation, or persistence.

Okta +3 account-takeover risk-framework

2r 2t 23m ago