Threat Actor: Unknown Hacker | Unknown Hacker
Victim: Nokia | Nokia
Price: Offered to reputable buyers on the dark web
Exfiltrated Data Type: Sensitive credentials and source code
Key Points :
- A significant data breach exposed Nokia’s source code through a third-party contractor.
- Leaked information includes SSH keys, RSA keys, Bitbucket logins, SMTP accounts, webhooks, and hardcoded passwords.
- The breach poses severe security risks for Nokia’s infrastructure.
- The hacker is selectively offering this data to reputable buyers on a dark web forum.
- This incident highlights vulnerabilities associated with third-party contractors.
- Nokia is urged to investigate the incident and strengthen its security protocols.
- Affected systems should undergo comprehensive security reviews to mitigate potential threats.
A significant data breach has exposed Nokia’s source code, reportedly obtained through a third-party contractor working on the company’s internal tools. The leaked information includes sensitive credentials such as SSH keys, RSA keys, Bitbucket logins, SMTP accounts, webhooks, and hardcoded passwords, posing severe security risks for Nokia’s infrastructure. The hacker is selectively offering this data to reputable buyers on a dark web forum.
This breach underscores the vulnerabilities associated with third-party contractors and highlights the critical need for stringent access controls and cybersecurity measures. Nokia is urged to investigate the incident immediately and strengthen its security protocols to prevent further exposure. Affected systems should undergo comprehensive security reviews to mitigate potential threats.
The post Nokia Source Code Breach Exposes Sensitive Credentials and Internal Data appeared first on Daily Dark Web.