A significant data breach has exposed Nokia’s source code, reportedly obtained through a third-party contractor working on the company’s internal tools. The leaked information includes sensitive credentials such as SSH keys, RSA keys, Bitbucket logins, SMTP accounts, webhooks, and hardcoded passwords, posing severe security risks for Nokia’s infrastructure. The hacker is selectively offering this data to reputable buyers on a dark web forum.
This breach underscores the vulnerabilities associated with third-party contractors and highlights the critical need for stringent access controls and cybersecurity measures. Nokia is urged to investigate the incident immediately and strengthen its security protocols to prevent further exposure. Affected systems should undergo comprehensive security reviews to mitigate potential threats.