Good for transparency, not good for all customers. The practical consequences to customers seems minimal, but the reputational consequences to Okta remain.
There's also so little transparency elsewhere, that it's hard to put this breach into perspective in terms of how long it took to investigate and how much the disclosure is revised based on ongoing analysis. It doesn't feel like this situation is out of the ordinary.
Overall, the industry still needs to have less sso.tax and more strong MFA adoption -- including resilience for multi-tenant systems and processes that are resistance to social engineering.