Critical: Phishing site detected with my session cookie redirect

Why am I getting this all of a sudden? There have been no code changes for a while. Would appreciate some guidance.

This is a critical issue for us to resolve. Will contact support also.

–Ray

Sorry, a point of clarification, we’re using OktaAuth() with an authorization callback from the client. I get the error at the time of redirect.

–Ray

Just saw the trust site:
https://trust.okta.com/#incident/a9C0Z0000008PTwUAM

I’ll be monitoring the situation.

Thanks,

–Ray