close
close

Mondor Festival

News with a Local Lens

Nokia confirms third-party code leak following data breach, but its data is safe
minsta

Nokia confirms third-party code leak following data breach, but its data is safe

When you purchase through links on our articles, Future and its syndication partners may earn a commission.

    Cyber ​​attack.     Cyber ​​attack.

Credit: Pixabay


  • Nokia investigation confirms third-party cyberattack

  • The company says its own data is secure

  • He will continue to monitor the situation


Nokia has confirmed a recent data breach actually occurred, but did not affect its own internal data.

The telecommunications giant said it had completed its initial investigation into the incident, confirming that a breach had occurred but that its systems and data were intact.

“Our investigation found no evidence of impact to our systems or data. Our investigations indicate a third-party security incident, related to a single custom software application,” the company said. BeepComputer.

End of life

A notorious data leaker known as IntelBroker recently posted a new ad on an underground forum, announcing a stolen archive apparently containing data from the telecommunications giant.

The archive was recovered from a third party and reportedly contains a large collection of Nokia source code, with the hacker claiming to have stolen Nokia software, SSH keys, RSA keys, BitBucket logins, SMTP accounts, webhooks and hardcoded credentials.

IntelBroker claims to have breached a third-party vendor via a SonarQube Server. There, they downloaded sensitive files belonging to several companies, including Nokia.

“We have found no evidence that this third-party incident would endanger Nokia’s critical systems or data, including source code, custom software, or encryption keys. Our customers are not impacted in any way, including their data and networks,” Nokia added.

The source code leaked by IntelBroker related to an application created by the third party for a Nokia client. It was supposed to work on one network and would not work elsewhere, it was added. No Nokia codes were found inside either.

The company concluded its statement by saying it was “closely monitoring” the situation.

IntelBroker is reportedly a Serbian hacker who has been active since October 2022 and has a history of high-profile attacks. To date, IntelBroker has published more than 80 separate leaks on online forums, including targeting companies and organizations such as AMD, Apple, Europol and HPE.

Via BeepComputer

You may also like