Hackers leak Nvidia employee credentials and threaten to reveal Nvidia’s “most closely guarded trade secrets”
The email and passwords of Nvidia employees have already been “hacked and distributed in the hacker community.”
The Lapsus$ group stole corporate data during a recent ransomware attack and threatened to disclose it if Nvidia did not remove LHR from its RTX 30-series graphics cards.
Nvidia refused to comply with the hackers’ demands, and since then the group has made another demand and stated that it will publish in the near future even more confidential data that it stole.
Earlier this week, Lapsus$ claimed responsibility for the DLSS source code leak and information about six alleged undeclared GPUs. Along with the requirement to remove the mining limiter of the 30th series, Lapsus$ requires Nvidia to transfer its drivers to the open source category.
A South American hacker group claimed to have had access to Nvidia servers for more than a week and managed to steal at least 1 TB of data during an attack by a ransomware program. Nvidia has confirmed that “the attackers stole employee credentials and confidential Nvidia information and began to merge them into the network».
On Friday, hackers laid out the email addresses of former and current employees of the company and NTLM password hashes as proof, which, according to Have I Been Pwned , already “hacked and distributed in the hacker community».
On Tuesday, Lapsus$ changed its requirements and stated that Nvidia has until Friday, March 4, to make all current and future GPU drivers open source. If Nvidia does not comply, the group threatens to disclose technical information about the company’s existing and new processors and what it calls “carefully guarded trade secrets of graphics and computer chips” in the public Telegram group.