Nvidia cybersecurity issue: LAPSUS$ exposes data of 71,000 employees

The data breach at the chipmaker Nvidia exposed emails and hashes belonging to at least 71,000 employees.

The Have I Been Pwned website suggests the hack includes 71,000 massive employee emails and hashes that could have allowed the hackers to crack their passwords.

Nvidia has neither confirmed nor denied that 71,000 employee credentials were compromised, reports The edge.

The graphics chipmaker has less than 71,000 employees, with its latest annual report showing 18,975 employees in 29 countries.

It is possible that the compromised email data includes previous employees and aliases for groups of employees.

The company has confirmed that some of its data was stolen in a cyberattack last week.

Nvidia said on February 23, 2022 that it became aware of a cybersecurity incident that impacted its computing resources. “After discovering the incident, we bolstered our network, hired cybersecurity incident response experts, and notified law enforcement,” Nvidia said in an earlier statement.

Nvidia said the threat actor took employee credentials and certain proprietary NVIDIA information from the systems and began leaking it online.

Hacking group LAPSUS$, which took credit for the breach, said it wants Nvidia to open up its GPU drivers forever and remove its Ethereum cryptocurrency mining nerf from all Nvidia GPUs. the 30 series (such as the newer models of the RTX 3080) rather than asking for money directly.

Hacking group LAPSUS$ has publicly stated that it will sell a crypto nerf bypass for $1 million. They briefly posted a message suggesting the leak would be delayed while they discussed terms with a potential buyer of Nvidia’s source code.

Source link