close
close

Association-anemone

Bite-sized brilliance in every update

    • Nokia confirms third-party code leak, but its data is safe
    asane

    Nokia confirms third-party code leak, but its data is safe

    Online Niel Posted on

    When you buy through links on our articles, Future and its syndicate partners may earn a commission.

    cyber attack. cyber attack.

    Credit: Pixabay

    • Nokia investigation confirms third-party cyber attack

    • The company says its own data is secure

    • Will continue to monitor the situation

    Nokia confirmed a recent data breach it did happen, but it didn’t affect its own internal data.

    The telecom giant said it had completed its initial investigation into the incident, confirming that a breach had occurred but that its systems and data were intact.

    “Our investigation found no evidence that any of our systems or data were affected. Our investigations point to a third-party security incident related to a single custom software application,” the company said. BleepingComputer.

    End of life

    An infamous data leaker known as IntelBroker recently posted a new ad on an underground forum advertising a stolen archive that apparently contains data from the telecom giant.

    The archive was obtained from a third party and was said to contain a large collection of Nokia source code, with the hacker claiming to have stolen Nokia software, SSH keys, RSA keys, BitBucket logins, SMTP accounts, webhooks and hardcoded credentials.

    IntelBroker claims to have breached a third party vendor by a SonarQube server. There, they downloaded sensitive files belonging to several companies, including Nokia.

    “We found no evidence that this third-party incident in any way compromised Nokia’s critical systems or data, including source code, custom software or encryption keys. Our customers are not affected in any way, including their data and networks,” Nokia added.

    The source code leaked by IntelBroker was for an app that a third party built for a Nokia customer. It was only supposed to work on one network and wouldn’t work anywhere else, it added. No Nokia code was found inside.

    The company ended its statement by saying it was “closely monitoring” the situation.

    IntelBroker is a Serbian hacker that has been active since October 2022 and has a history of high-profile attacks. More than 80 separate leaks have been posted on online forums by IntelBroker to date, with targets including companies and organizations such as AMD, Apple, Europol and HPE.

    By BleepingComputer

    You might also like

    Online Niel
    View all posts

    You Might Also Like