Aura’s identity protection platform suffered a breach via employee vishing, resulting in unauthorized access to a third-party marketing database and exposure of approximately 900,000 records; ShinyHunters subsequently published the data after ransom negotiations failed. An Okta SSO compromise has been alleged by the threat group but has not been confirmed by Aura, and no CVE is assigned as this is a social engineering and access control failure rather than a software vulnerability. Recommended actions include auditing third-party and M&A-acquired tool access, reviewing Okta or equivalent SSO logs for anomalous authentication events, and reinforcing employee vishing awareness procedures with callback verification protocols.