Oddbean

Nokia investigates breach after hacker claims to steal source code Nokia is investigating whether a third-party vendor was breached after a hacker claimed to be selling the company's stolen source code. IntelBroker claimed to be selling Nokia source code that was stolen after they breached a third-party vendor's server. IntelBroker states that the stolen data contains SSH keys, source code, RSA keys, BitBucket logins, SMTP accounts, webhooks, and hardcoded credentials. The threat actor told BleepingComputer that they gained access to the third-party vendor's SonarQube server using default credentials, allowing them to download customers' Python projects, including those belonging to Nokia. See more: https://www.bleepingcomputer.com/news/security/nokia-investigates-breach-after-hacker-claims-to-steal-source-code/ #cybersecurity #databreach