Hacker Leaks Source Code Allegedly Stolen From Nokia

The threat actor known as ‘IntelBroker’ has publicly leaked what he claims is Nokia’s source code taken from a third-party contractor.

The notorious hacker, who previously tried selling this data on BreachForums has now made it freely available after Nokia “denied the claims” of the breach. IntelBroker also announced the leak on X (formerly Twitter), reiterating the release of the data in response to Nokia’s denial.

Since Nokia have denied that they had their data taken from a 3rd party, the data is now freely available to download.

— IntelBroker (@IntelBrokerBF) November 7, 2024

The leaked data includes a significant number of files potentially related to Nokia's network management operations and sensitive customer systems, raising serious concerns about the security of Nokia’s infrastructure and customer networks.

In his updated post on the hacker forums, IntelBroker shared what appears to be source code and deployment tools used in Nokia's development environments. The leaked dataset shows critical files, such as SSH and PPK keys, likely used for secure system access. Additionally, repositories containing configuration files, Python scripts for operational dashboards, and sensitive metadata related to Nokia's deployment tools were uncovered​.

Nokia, a Finnish telecommunications powerhouse, is crucial in providing networking and 5G technology to over 100 countries, including many government agencies and large-scale private enterprises.

With such a broad and impactful customer base, any breach involving sensitive code or credentials could lead to severe vulnerabilities in its infrastructure, potentially opening doors for further cyberattacks across its client networks.

However, despite the public leak of the data, Nokia maintains that its systems, source code, and customer information remain uncompromised.

In a statement shared with the media previously, Nokia stated that its internal investigation following the initial disclosure of the breach allegations had found no evidence that its systems or data had been impacted. The company also affirmed it was monitoring the situation closely, maintaining a rather cryptic stance. CyberInsider has contacted Nokia again, given the new developments, but the Finnish telecommunications technology firm has not responded to our requests for a statement.

IntelBroker also stated that the Nokia hack is unrelated to the recent Cisco breach and instead is said to have originated from a separate security incident involving a third-party contractor. That same contractor was previously linked to breaches at online gambling platforms, an international luxury goods brand, a rewards platform, and an AI-powered healthcare and diagnostics provider, but IntelBroker has so far kept those undisclosed.