US chipmaker giant Nvidia confirmed today it's currently investigating an "incident" that reportedly took down some of its systems for two days.
Systems impacted in what looks like a cyberattack include the company's developer tools and email systems, as first reported by The Telegraph.
The reported outage is the result of a network intrusion, and it is still not known if any business or customer data was stolen during the incident.
Nvidia told BleepingComputer that the nature of the incident is still being evaluated and that the company's commercial activities were not affected.
"We are investigating an incident. Our business and commercial activities continue uninterrupted," an Nvidia spokesperson told BleepingComputer.
"We are still working to evaluate the nature and scope of the event and don't have any additional information to share at this time."
An insider has described this incident as having "completely compromised" Nvidia's internal systems.
While some reports are speculating that Russia is behind this incident, there is nothing indicating this is true at the time.
On February 8, the American chipmaker terminated previously announced efforts to acquire British semiconductor giant Arm for $80 billion.
Update February 26, 07:55 EST: The Lapsus$ data extortion group claims they breached and stole 1 TB of data from Nvidia's network.
They also leaked online what they claim to be password hashes for all Nvidia employees.
BleepingComputer has not been able to independently verify the gang's claims yet.
Comments
GT500 - 2 years ago
TechPowerUp posted an interesting screenshot in their article on this of someone claiming to have been the hacker who stole data from NVIDIA, and also claiming that NVIDIA installed ransomware on their system in retaliation:
https://www.techpowerup.com/292375/nvidia-has-allegedly-been-hacked-internal-systems-compromised
Unfortunately they don't seem to identify the source of the screenshot. Might be a screenshot from a mobile app, but I'm not familiar with it.
COWLITZMAN - 2 years ago
Anyone with a Nvidia chipset hardware installed should set their antivirus to lockdown mode. If these hackers got into the update supply chain method then the possibility for modification of drivers and firmware cannot be ruled out.
EndangeredPootisBird - 2 years ago
Its why I stay away from security products that rely more on reputation and static analysis rather than behavior.
GT500 - 2 years ago
Most security products that rely on behavioral detection will automatically trust digitally signed binaries, thus the applications bundled with the NVIDIA driver would always be automatically allowed regardless of what they did.
Any security software with behavioral detection that doesn't automatically allow digitally signed software is more likely to cause a myriad of problems and feed your paranoia than to actually provide good security.