Nvidia has confirmed that hackers stole delicate data from its networks, together with worker credentials and proprietary company data, throughout last week’s cyberattack and are now “leaking it online,” a spokesperson informed TechCrunch on Tuesday.
Nvidia declined to say what data was stolen in the course of the attack, which first came to light on Friday. However, a ransomware outfit known as “Lapsus$” has taken accountability for the breach on its Telegram channel and claims to have stolen 1 terabyte of knowledge, together with “highly confidential/secret data” and proprietary supply code. According to posts from the group, this contains supply code for Nvidia’s hash price limiter, which reduces the Ethereum mining efficiency of the company’s RTX 30-series graphics playing cards.
Though comparatively unknown, the Lapsus$ grasp first emerged on the ransomware scene in December with an attack on Brazil’s Ministry of Health that stole 50 terabytes of data, together with residents’ vaccination data. Since then, the gang has targeted Portuguese media group Impresa and South American telecommunication suppliers Claro and Embratel.
“Some researchers believe the gang is based in South America, but I’m not sure how solid the evidence is pointing to that,” Brett Callow, risk analyst at Emsisoft, tells TechCrunch. “So far they appear to be somewhat amateurish, which could indicate that the individuals involved are not experienced cybercriminals.”
Nvidia, which additionally declined to say who it believes is liable for the attack, says it grew to become conscious of the malicious intrusion on February 23, which prompted the U.S. chipmaker to inform regulation enforcement and rent cybersecurity specialists to assist it reply to the attack.
Although the breach occurred a day earlier than the Russian invasion of Ukraine, which prompted some to take a position that the attack might have been linked to Russian state-sponsored hackers, Nvidia added that it has “no evidence that this is related to the Russia-Ukraine conflict.”
The company says it’s now working to research the knowledge that has been stolen and subsequently leaked, however says it “does not anticipate any disruption to our business or our ability to serve our customers as a result of the incident.” Reports final week had claimed that the cyberattack induced the company’s electronic mail programs and developer instruments to go offline for 2 days.
“Security is a continuous process that we take very seriously at Nvidia — and we invest in the protection and quality of our code and products daily,” the Nvidia spokesperson added.