Nvidia has confirmed that it is facing a large-scale cyberattack. The company told ZDNet that it is investigating the incident.
Friday, the British newspaper The Telegraph reported that Nvidia faced two days of outages to its messaging systems and tools used by developers.
“We are investigating an incident. Our business and commercial activities continue uninterrupted. We are still working to assess the nature and scope of the incident and have no additional information to share at this time,” a company spokesperson said Friday.
The spokesperson did not respond to questions about the scope and nature of the attack.
Hack-back suspicions
Several information published online indicate that the cybercriminal group LAPSU$ claimed responsibility for the attack against Nvidia. The group claimed to have stolen 1 TB of data containing information about its employees.
On screenshots from their Telegram channel, a member of LAPSU$ claims that Nvidia deployed ransomware on their system after the hack.
“Nvidia employee VPN access requires the PC to be enrolled in MDM (Mobile Device Management). Thanks to this, they were able to connect to a virtual machine that we use. Yes, they managed to encrypt the data,” the group claimed in a later post.
Brett Callow, threat analyst at Emsisoft, notes that the Telegram channel on which these messages were posted is now “temporarily unreachable”. “Although hack-back (hacking back following an attack, editor’s note) is not common, it has certainly happened before,” he explains. “Deploying ransomware on attackers’ network can prevent them from disclosing the data they have exfiltrated. »
The chipmaker has been in the news recently following its bid to buy Arm for $40 billion. The deal fell apart earlier this month, with both parties citing “significant regulatory challenges” as the reason the deal fell through.
Nvidia is the largest chipmaker in the United States and reported revenue of $7.64 billion last quarter.
Source: ZDNet.com