[kseifried]

Oh wow, so CSIdentity Corporation was combined with Experian in 2016: https://www.experian.com/blogs/news/2016/04/18/csid/ so this email appears to be legitimate:

Original Message Message ID <1531460072.29729015.1703124342154@marketing.csid.com> Created at: Wed, Dec 20, 2023 at 7:05 PM (Delivered after 0 seconds) From: Okta <okta@mail.csid.com> To: "kseifried@cloudsecurityalliance.org" <kseifried@cloudsecurityalliance.org> Subject: Okta October Security Incident – Contact Information Exposure SPF: PASS with IP 96.46.132.207 Learn more DKIM: 'PASS' with domain mail.csid.com Learn more DMARC: 'PASS' Learn more

Which means the text of the email:

"As a security best practice, Okta strongly recommends that you enable multi-factor authentication (MFA) across all your online accounts as a key protection against these types of attacks."

Is especially ironic considering how Okta got popped.