Nokia Investigates Alleged Source Code Breach

Nokia has announced an investigation into a potential security breach involving a third-party contractor after a well-known hacker claimed to have stolen source code.

In an online forum post, the hacker, known as IntelBroker, claimed to be selling Nokia source code, allegedly obtained from a contractor working with Nokia on internal tools. The hacker claims to have access to sensitive data, including proprietary Nokia software, SSH keys, RSA keys, BitBucket logins, SMTP accounts, webhooks, and other credentials. IntelBroker, reportedly based in Serbia, has been active since 2022 and is linked to multiple high-profile data leaks, previously targeting companies like AMD, Apple, Europol, and HPE.

Nokia provided a statement to TechRadar, acknowledging the reports and confirming an investigation. So far, no evidence has been found that Nokia’s own systems or data have been compromised. Here is the Nokia’s statement:
“Nokia is aware of reports that an unauthorized actor has allegedly gained access to certain data belonging to a third-party contractor, and possibly even Nokia data.”

Nokia is deeply involved in cybersecurity, especially in network infrastructure and 5G. If this alleged breach involved actual source code or sensitive data, it could impact Nokia’s credibility in cybersecurity. Any such breach could risk software integrity and raise concerns about the security of Nokia’s broader network solutions and partnerships.

Source Techradar