iscover
Share this article on:
Powered by
MOMENTUM
MEDIA
Infamous threat actors have claimed to have stolen data belonging to mobile phone and consumer electronics brand Nokia.
Notorious threat actor IntelBroker, leader of the CyberN-----s threat group, posted on a popular hacking forum claiming to be selling data it exfiltrated from a Nokia third-party contractor.
“Today, I am selling a large collection of Nokia source code, which we got from a 3rd party contractor that directly worked with Nokia to help aid their development of some internal tools,” the threat actor said.
Data reportedly includes Bitbucket logins, SSH keys, RSA keys, SMTP accounts, hardcoded credentials, webhooks, and source code.
As has become standard practice for IntelBroker, the threat actor published a sample of the stolen data in the form of a file tree. Being just a text file, it is unclear if any of the threat actor’s claims are real.
IntelBroker has listed the data for sale for US$20,000.
According to media reports, Nokia is aware of the claims but has yet to find any evidence that the incident had an effect on its systems.
“Nokia is aware of reports that an unauthorised actor has alleged to have gained access to certain third-party contractor data and possibly data of Nokia,” the company said.
“Nokia takes this allegation seriously, and we are investigating. To date, our investigation has found no evidence that any of our systems or data being impacted.
“We continue to closely monitor the situation.”
According to Cyber Digest, the breach may have had an impact beyond the company’s immediate systems, stating that the incident affected Nokia’s 4G and 5G product data, as well as Vodafone Idea Limited (VIL), a major telco in India with over 217 million subscribers.
While IntelBroker did not mention any customer data being published, the claims made could result in further data breaches through the use of the source code or credentials.
Be the first to hear the latest developments in the cyber industry.
