Powered by MOMENTUM MEDIA
cyber daily logo
Breaking news and updates daily. Subscribe to our Newsletter

Nokia source code allegedly stolen in third-party cyber attack

Infamous threat actors have claimed to have stolen data belonging to mobile phone and consumer electronics brand Nokia.

user icon Daniel Croft
Tue, 05 Nov 2024
Nokia source code allegedly stolen in third-party cyber attack
expand image

Notorious threat actor IntelBroker, leader of the CyberN-----s threat group, posted on a popular hacking forum claiming to be selling data it exfiltrated from a Nokia third-party contractor.

“Today, I am selling a large collection of Nokia source code, which we got from a 3rd party contractor that directly worked with Nokia to help aid their development of some internal tools,” the threat actor said.

Data reportedly includes Bitbucket logins, SSH keys, RSA keys, SMTP accounts, hardcoded credentials, webhooks, and source code.

============
============

As has become standard practice for IntelBroker, the threat actor published a sample of the stolen data in the form of a file tree. Being just a text file, it is unclear if any of the threat actor’s claims are real.

IntelBroker has listed the data for sale for US$20,000.

According to media reports, Nokia is aware of the claims but has yet to find any evidence that the incident had an effect on its systems.

“Nokia is aware of reports that an unauthorised actor has alleged to have gained access to certain third-party contractor data and possibly data of Nokia,” the company said.

“Nokia takes this allegation seriously, and we are investigating. To date, our investigation has found no evidence that any of our systems or data being impacted.

“We continue to closely monitor the situation.”

According to Cyber Digest, the breach may have had an impact beyond the company’s immediate systems, stating that the incident affected Nokia’s 4G and 5G product data, as well as Vodafone Idea Limited (VIL), a major telco in India with over 217 million subscribers.

While IntelBroker did not mention any customer data being published, the claims made could result in further data breaches through the use of the source code or credentials.

Daniel Croft

Daniel Croft

Born in the heart of Western Sydney, Daniel Croft is a passionate journalist with an understanding for and experience writing in the technology space. Having studied at Macquarie University, he joined Momentum Media in 2022, writing across a number of publications including Australian Aviation, Cyber Security Connect and Defence Connect. Outside of writing, Daniel has a keen interest in music, and spends his time playing in bands around Sydney.

newsletter
cyber daily subscribe
Be the first to hear the latest developments in the cyber industry.