Nokia got its hands on vulnerability details affecting some of the company's most popular cell phones. Question is, did they pay for the information?

Did Nokia pay for vulnerability information? - CSO Online

Nokia confirmed Thursday its widely used Series 40 operating system has security vulnerabilities that could allow stealth installation and activation of applications.

But the company is evasive on whether it paid â¬20,000 (US$29,500) to researcher Adam Gowdiak of Security Explorations, who wanted payment for the six-month effort spent finding the flaws.

Gowdiak would not disclose if he was paid, but said that only reputable, vetted companies that pay would get the full research, which amounted to 180 pages and 14,000 lines of proof-of-concept code.