We’re doing a bit of digging through our backlog and wanted to address this topic as it’s commonly searched for 
Thanks for the great questions @Isikyus, we apologize we weren’t able to get to them earlier 
Generally speaking, security issues will be addressed at trust.okta.com - This has links to both Okta and Auth0 status pages, Security, and Compliance. You’ll also notice a link to establish a primary security contact (for Auth0 specifically, this requires contacting your account executive, customer success manager or opening a support ticket with security contact info).
If your organization is directly affected by a security breach, event, etc. you can expect to be contacted directly as well.