Okta Impersonation Technique Could be Utilized by Attackers

Okta has a standard process that can be abused for nefarious purposes. The legitimate method for changing credential details within Okta (for example, if a person gets married and changes her last name and adopts a new email address) can be misused by an attacker to impersonate another existing user.

Story added 29. August 2022, content source with full text you can find at link above.