Nokia is investigating a report that a hacker may have hacked one of its contractors and gained access through him to various data of the Finnish company, writes the BleepingComputer portal. According to the attacker
Image Source: BleepingComputer
«Nokia is aware of reports alleging that an unauthorized entity has gained access to certain third party data and possibly Nokia data. The company takes these allegations seriously and we are investigating. To date, our investigation has not found any evidence that any of our systems or data were compromised. We continue to monitor the situation closely,” the company told BleepingComputer.
The company’s comment came after a hacker or group of attackers hiding behind the pseudonym IntelBroker announced the sale of stolen source code obtained as a result of hacking the internal network of one of Nokia’s contractors.
«Today I am selling a large collection of Nokia source code that we received from a third party contractor who worked directly with Nokia and helped them develop some internal tools,” the attacker said on one of the forums on the darknet.
IntelBroker claims that the stolen information includes SSH keys, source code, RSA keys, BitBucket logins, SMTP accounts, webhooks, and hardcoded credentials. In a conversation with BleepingComputer, the attacker stated that they gained access to the contractor’s SonarQube server using default credentials, which allowed them to steal the organization’s client projects written in Python, including those owned by Nokia.
The hacker provided BleepingComputer with an image of a file tree of allegedly stolen data. The portal forwarded this information to Nokia with a request to confirm or refute the attacker’s statement. However, the company did not respond to this request.
IntelBroker attracted attention after hacking into the network of the insurance company DC Health Link, which provides health insurance to US legislators and residents of Washington. The hack exposed sensitive information about 21 sitting members of Congress, their aides and family members. IntelBroker is also credited with participating in the hacking of Hewlett Packard Enterprise (HPE) servers and the Weee! The hacker also published leaked data from various companies, including T-Mobile, AMD and Apple, which were stolen from their contractors through SaaS services.