Excerpt from BleepingComputer Article, Published on Nov 7, 2024.
Nokia has confirmed that a recent source code leak on a hacker forum was not from its own systems but rather a third-party application. The announcement comes following the hacker IntelBroker’s data release, which initially claimed that a breach had impacted Nokia’s systems and involved sensitive credentials.
IntelBroker alleged that the leak included SSH keys, RSA keys, BitBucket logins, SMTP accounts, and hardcoded credentials, attempting to sell the data before choosing to release it online when Nokia refuted the claims of a breach. However, Nokia clarified in a statement that its investigation found no compromise to its own systems or customer data. The Finnish telecommunications giant attributes the leak to a third-party security incident involving a single customized application.
“Our investigation has found no evidence of any of our systems or data being impacted. Our investigations point to a third-party security incident related to a single customized software application,” a Nokia spokesperson told BleepingComputer.
The compromised source code relates to an application developed by an external vendor specifically for use in a single network belonging to a Nokia client. Nokia emphasized that the app neither functions outside this isolated environment nor contains any Nokia code, thus posing no risk to Nokia’s infrastructure or sensitive data.
IntelBroker revealed that the initial breach occurred through a vulnerable SonarQube server, which allowed access to multiple large companies’ files, including those of Nokia’s third-party vendor. Although Nokia’s systems were not impacted, the company noted that it would continue to monitor the situation closely.
This incident underscores the importance of cybersecurity across the entire supply chain, as companies rely on third-party software and services for specialized operations.
To delve deeper into this topic, please read the full article BleepingComputer.
