Nokia source code allegedly stolen in third-party cyberattack
Notorious threat actors have claimed to have stolen data belonging to mobile phone and consumer electronics brand Nokia.
Notorious threat actor IntelBroker, head of the CyberN—–s threat group, posted on a popular hacking forum claiming to sell data it had exfiltrated from a third-party Nokia contractor.
“Today I am selling a large collection of Nokia source code, which we obtained from a third-party contractor who worked directly with Nokia to help them develop some internal tools,” the threat actor said.
The data would include Bitbucket logins, SSH keys, RSA keys, SMTP accounts, hardcoded credentials, webhooks, and source code.
As has become standard practice for IntelBroker, the threat actor posted a sample of the stolen data in the form of a file tree. As it is simply a text file, it is unclear whether the threat actors’ claims are real.
IntelBroker put the data up for sale for US$20,000.
According to media reports, Nokia is aware of these allegations but has yet to find evidence that the incident had any effect on its systems.
“Nokia is aware of reports that an unauthorized actor may have had access to certain third-party contractor data and possibly Nokia data,” the company said.
“Nokia takes this allegation seriously and we are investigating. To date, our investigation has found no evidence that any of our systems or data are impacted.
“We continue to monitor the situation closely.”
According to Cyber Digest, the breach may have had an impact beyond the company’s immediate systems, indicating that the incident affected data from Nokia’s 4G and 5G products, as well as Vodafone Idea Limited (VIL), a leading telecommunications company in India with over 217 million subscribers. .
Although IntelBroker did not mention any published customer data, the allegations made could lead to further data breaches through the use of source code or credentials.