Rumor mill: Many on-line safety teams are reporting that the South American hacker group Lapsus$ is declaring to have been powering the the latest cyberattack on Nvidia. It really is also claiming that Nvidia hacked them in return, encrypted the stolen knowledge, and ransomed again their devices. For now, this is just hearsay, but makes for a fantastic turning-the-tables tale.
Nvidia explained to the Telegraph on Friday that it was investigating a safety incident, which the Telegraph believes involved Nvidia’s inside methods staying “wholly compromised.” Formal resources have not stated much more.
Yesterday, Lapsus$ claimed to have stolen 1 TB of knowledge from Nvidia and had been threatening to leak Nvidia employees’ passwords and safety facts. It experienced some screenshots to assistance its statements, but they were not conclusive the team might or could not have experienced that facts.
Soon afterward, Lapsus$ claimed that Nvidia hacked it in return. The team supposedly still left a single of its digital equipment enrolled in Nvidia’s mobile gadget administration method, which gave Nvidia a backdoor into its systems. Nvidia remotely encrypted the stolen details and minimize off Lapsus$’s accessibility to Nvidia’s community, but the hackers assert to have manufactured a duplicate of the data.
LAPSU$ extortion group, a team functioning out of South The united states, claim to have breached NVIDIA and exfiltrated over 1TB of proprietary knowledge.
LAPSU$ statements NVIDIA carried out a hack again and states NVIDIA has productive ransomed their devices
— vx-underground (@vxunderground) February 26, 2022
In early December, Lapsus$ also took duty for a hack on Brazil’s health and fitness ministry that concerned countrywide immunization program details currently being deleted and possibly stolen. Lapsus$ mentioned it would return the information for a rate, but the Brazilian govt promises not to have compensated and as a substitute recovered the info and rebuilt its methods independently a month later on.
This time, Lapsus$ hasn’t shown a coherent strategy. In the beginning, it mentioned that it would hold the information ransom. Then, the group insulted Nvidia and employed the firm’s political stance to justify the attack. Now, the hackers are declaring they are offended that Nvidia would hack them again and are leaking the information in retaliation.
Some sources say that Lapsus$ has leaked Nvidia employees’ safety aspects on Telegram, but that is nevertheless to be confirmed. Even though not confirmed, it seems like Nvidia has experienced more than sufficient time to update its employees’ safety aspects and make the leaked information useless.
Lapsus$ also claims to have proprietary information and facts about Nvidia GPUs, but that knowledge need to be legally secured if similar to their performance. At this stage, Lapsus$ seems to be struggling to persuade Nvidia that they have sufficient leverage to justify a ransom.
Picture credit score: Kaur Kristjan