1Password

AgileBits, operating as 1Password, is a cybersecurity company headquartered in Canada. The organization is primarily known for developing 1Password, a password management solution designed to help individuals and businesses securely store and manage credentials. While the provided context does not detail additional product lines or specific markets served, the company's focus on password security positions it within the broader identity and access management sector. The incident overview indicates that 1Password serves a user base that relies on its services for sensitive credential storage, though exact scale metrics are not disclosed in the available information.

A notable aspect of 1Password's operational history is its handling of a security incident in September 2023. The incident involved attackers exploiting a compromised Okta support system to access 1Password's Okta tenant via a stolen session cookie from an IT employee's HAR file submitted during a support case. The threat actor attempted to modify identity providers tied to Google, activate them, and request administrative user reports, but detection occurred through an unexpected email notification. 1Password confirmed that no user data or sensitive systems were accessed. In response, the organization rotated affected credentials and implemented stricter Okta configurations, including reduced administrative session durations, tightened multi-factor authentication rules, and decreased the number of super administrators. This event highlights 1Password's incident response protocols and transparency in disclosing security events, though discrepancies with Okta's logs regarding the timeline of HAR file access were noted. The company's attribution of the breach to Okta's support incident underscores its reliance on third-party identity providers and the associated supply chain risks.