1. Forum
  2. tqw
  3. TQW GENTECH

  • Nokia confirms data breach leaked third-party code, but its data

    From TechnologyDaily@1337:1/100 to All on Friday, November 08, 2024 12:45:04
    Nokia confirms data breach leaked third-party code, but its data is safe

    Date:
    Fri, 08 Nov 2024 12:39:00 +0000

    Description:
    Nokia confirms IntelBroker's claims, but downplays importance of stolen data

    FULL STORY ======================================================================Nokia investigation confirms cyberattack with a third party The company says its
    own data is secure It will continue to monitor the situation

    Nokia has confirmed a recent data breach did indeed happen, but did not
    affect its own internal data.

    The telecoms giant said it had completed its initial investigation into the incident, confirming that a breach had occured, but that its systems, and data, is intact.

    "Our investigation has found no evidence of any of our systems or data being impacted. Our investigations point to a 3rd party security incident, related to a single customized software application," the company told BleepingComputer . End of life

    An infamous data leaker known as IntelBroker recently posted a new ad on an underground forum, advertising a stolen archive apparently containing data from the telco giant.

    The archive was taken from a third party, and was said to contain a large collection of Nokia source code, with the hacker claiming to have stolen
    Nokia software, SSH keys, RSA keys, BitBucket logins, SMTP accounts, webhooks and hardcoded credentials.

    IntelBroker claims to have breached a third-party vendor via a SonarQube server . There, they downloaded sensitive files belonging to multiple companies, including Nokia.

    We have found no evidence that this 3rd party incident would in any way endanger critical Nokia systems or data, including source code, customized software, or encryption keys. Our customers are in no way impacted, including their data and networks, Nokia added.

    The source code IntelBroker leaked was for an application that the
    third-party built, for a client of Nokias. It was supposed to work on only
    one network, and will not work elsewhere, it was added. No Nokia code was found inside, either.

    The company concluded its statement by saying it was closely monitoring the situation.

    IntelBroker is reportedly a Serbian hacker who has been active since October 2022, and has a history of high-profile attacks. More than 80 separate leaks have been posted to online forums by IntelBroker to date, with targets including companies and organizations such as AMD, Apple, Europol and HPE.

    Via BleepingComputer You might also like Cisco investigates breach after
    data put up for sale on BreachForums Here's a list of the best firewalls
    today These are the best endpoint protection tools right now



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/nokia-confirms-data-breach-leaked-third -party-code-but-its-data-is-safe


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)