Home Source code Nvidia confirms that it is investigating an “incident”, apparently a cyberattack

Nvidia confirms that it is investigating an “incident”, apparently a cyberattack


Nvidia confirms The edge, Bloomberg, Reutersand others that he is investigating an “incident” — hours after The Telegraph reported that the graphics chip manufacturing giant had suffered a devastating cyberattack that had “completely compromised” the company’s internal systems over the past two days.

“We are investigating an incident. Our business and commercial activities continue uninterrupted. We are still working to assess the nature and scope of the event and have no additional information to share at this time,” read a statement via Nvidia spokesperson Hector Marinez.

Same The TelegraphNvidia’s sources don’t necessarily suggest any data was stolen or deleted, and there’s no current suggestion that the “incident” could be related to Russia’s invasion of Ukraine, though cyberattacks were part of the offensiveand internet infrastructure has also been a target there.

Bloomberg report now it was a minor ransomware attack, citing a “person familiar with the incident”.

Early Saturday morning, dark web intelligence firm DarkTracer tweeted that Lapsus$, a gang of ransomware recently linked to an attack on Portugal’s biggest TV channel, claimed responsibility, disclosing what it says are password hashes for Nvidia employees, and indicating that it has other data including source code and information related to RTX GPUs. Soufiane Tahiri posted a later message from the band on Twitter, where they claimed that the company tried to delete their data in a virtual machine through the VPN and device management platform it uses. They apparently claim to still have a backup of the data they are threatening to release. There is still no public indication that this incident is related to the invasion of Russia.

If a US-based company like Nvidia had been targeted, it could provoke US retaliation. “If Russia pursues cyberattacks against our businesses, our critical infrastructure, we are ready to respond,” President Biden said during his speech on Thursday.

While the alleged attack would have destroyed Nvidia’s email, we received Nvidia’s statement today from an Nvidia email address.

Nvidia also mysteriously asked the press Wednesday night to push back a minor announcement that allegedly arrived on Thursday, without providing an explanation. This moment corresponds to the moment when The telegraph reports that Nvidia’s systems have been compromised.

Update, 5:47 p.m. ET: Added that Bloomberg is now citing a source that the “incident” was a ransomware attack.

Update, February 26, 6:37 a.m. ET: Added information about the Lapsus$ group claiming to be responsible for the ransomware attack.