NVIDIA Details
Industry
Technology
Security Incidents
1
NVIDIA Corporation is an American multinational technology company that was founded in 1993 by Jensen Huang, Chris Malachowsky, and Curtis Priem. The company's primary purpose is to design and manufacture graphics processing units (GPUs) for the gaming and professional markets, as well as system on a chip units (SoCs) for the mobile computing and automotive market. NVIDIA is well known for its GeForce product line, which is among the leading brands in the video gaming industry. Over time, the company has expanded into high-performance computing (HPC), artificial intelligence (AI), and data sci...
Show more
Security Incidents
NVIDIA Breach of Feb 2022
Show more
Show more
Show more
Severity Score
High
Type
Phishing AttackSummary
In late February 2022, Nvidia, a leading microchip company, experienced a significant cyberattack resulting in parts of its business being offline for two days. The LAPSUS$ ransomware group claimed responsibility, asserting that they had exfiltrated 1 TB of data. The group, known for targeting major organizations and using phishing attacks to gain initial access, demanded Nvidia remove LHR (Lite Hash Rate) limitations from all GeForce 30 series firmware intended to limit cryptocurrency mining. Furthermore, they threatened to release sensitive data if Nvidia did not open-source its GPU drivers....Show more
Severity
The cyberattack on Nvidia, spearheaded by the relatively new but increasingly notorious LAPSUS$ ransomware group, had several intriguing elements. The attackers demanded not only the removal of lite hash rate limitations from Nvidia GeForce 30 series firmware but also the open-sourcing of all GPU drivers, threatening to leak 1 TB of sensitive data. This breach impacted Nvidia severely, resulting in the leak of employee credentials for over 70,000 individuals and proprietary information, highlighting significant vulnerabilities in their security infrastructure. Given the combination of high-pro...Show more
Impact
The recent cyber incident involving Nvidia was a significant ransomware attack carried out by the LAPSUS$ group. The attackers exfiltrated 1 TB of data and subsequently leaked employee credentials and proprietary information, including complete silicon and chipset files for several Nvidia GPUs. The ransom demands included the removal of lite hash rate limitations on GeForce 30 series GPUs and the open-sourcing of Nvidia’s GPU drivers. The breach resulted in parts of Nvidia’s business being taken offline for two days, exposing sensitive internal company data and posing a substantial threat to N...Show more
KEEP YOUR ENVIRONMENT SECURE
Weak credentials are the leading cause of breaches. Beyond Identity can help.
See MFA exploits in action
Watch how adversaries exploit companies in quick videos