Nortel Networks suffered a security breach that for almost a decade gave attackers with Chinese IP addresses access to executive network accounts, technical papers, employee emails and other sensitive documents at the once-thriving telecommunications firm, The Wall Street Journal reported (subscription required).
The publication, citing a former 19-year Nortel employee who oversaw the investigation into the hack, said Nortel did nothing to keep out the hackers except to change seven compromised passwords that belonged to the CEO and other executives. The company “made no effort to determine if its products were also compromised by hackers,” the WSJ said. Nortel, which sold off parts of its business as part of a 2009 bankruptcy filing, spent about six months investigating the breach and didn’t disclose it to prospective buyers.
The infiltration dated as far back as 2000 and allowed the hackers “access to everything,” Brian Shields, who was a senior adviser for systems security at Nortel, told the WSJ. By 2009—five years after a breach was first discovered, he found rootkits still burrowed deep into some of the laptops he examined. They were using an encrypted channel to send e-mail and other sensitive information to servers near Beijing.