wp-plugin-hostgator
domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init
action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114ol-scrapes
domain was triggered too early. This is usually an indicator for some code in the plugin or theme running too early. Translations should be loaded at the init
action or later. Please see Debugging in WordPress for more information. (This message was added in version 6.7.0.) in /home4/scienrds/scienceandnerds/wp-includes/functions.php on line 6114Source: https:\/\/www.theverge.com\/2022\/3\/4\/22962217\/nvidia-hack-lapsus-have-i-been-pwned-email-breach-password<\/a> Nvidia never denied that it got hacked. The GPU giant just didn\u2019t say all that much about what happened, either.<\/p>\n But now \u2014 as we wait to see whether the hackers make good on their threat to dump hundreds of gigabytes of proprietary Nvidia data on the web<\/a>, including details about future graphics chips, by an unspecified Friday deadline \u2014 the compromised email alert website Have I Been Pwned suggests that the scope of the hack includes a staggering 71,000 employee emails and hashes<\/a> that may have allowed the hackers to crack their passwords (via TechCrunch<\/em><\/a>).<\/p>\n It\u2019s not clear how Have I Been Pwned obtained this info, and Nvidia won\u2019t say. Nvidia would not confirm or deny to The Verge<\/em> whether 71,000 employee credentials have been compromised, and it would not say whether it plans to comply with any of the hackers\u2019 demands. <\/p>\n It is worth noting that Nvidia has far fewer than 71,000 employees \u2014 its last annual report<\/a> lists 18,975 employees across 29 countries, though it\u2019s possible the compromised email addresses include prior employees and aliases for groups of employees. (Companies that rely heavily on email often have a lot of mailing lists.) The Telegraph<\/em>\u2019s initial report suggested<\/a> that the company\u2019s internal systems, including email, had been \u201ccompletely compromised,\u201d and a leak of 71,000 employee credentials would line up with that.<\/p>\n Here is all that Nvidia is actually saying today, via spokesperson Hector Marinez:<\/p>\n On February 23, 2022, NVIDIA became aware of a cybersecurity incident which impacted IT resources. Shortly after discovering the incident, we further hardened our network, engaged cybersecurity incident response experts, and notified law enforcement. <\/p>\n We have no evidence of ransomware being deployed on the NVIDIA environment or that this is related to the Russia-Ukraine conflict. However, we are aware that the threat actor took employee credentials and some NVIDIA proprietary information from our systems and has begun leaking it online. Our team is working to analyze that information. We do not anticipate any disruption to our business or our ability to serve our customers as a result of the incident. <\/p>\n Security is a continuous process that we take very seriously at NVIDIA \u2013 and we invest in the protection and quality of our code and products daily. <\/p>\n<\/blockquote>\n That\u2019s what we\u2019d heard previously, and Nvidia\u2019s cybersecurity incident response page<\/a> hasn\u2019t been updated since March 1st, either. <\/p>\n The LAPSUS$ hacking group, which has taken credit for the breach, had an unusually populist demand: it stated that it wants Nvidia to open source its GPU drivers forever and remove its Ethereum cryptocurrency mining nerf<\/a> from all Nvidia 30-series GPUs (such as newer models of the RTX 3080) rather than directly asking for cash. <\/p>\n But they clearly want cash, too. The hackers have also publicly stated that they\u2019ll sell a bypass for the crypto nerf for $1 million, and this morning, they briefly posted a message suggesting that today\u2019s leak would be delayed while they discussed terms with a would-be buyer of Nvidia\u2019s source code.<\/p>\n If Nvidia does pay up, something that\u2019s not unheard of in these data ransom situations, I wouldn\u2019t necessarily expect to hear about it anytime soon. It won\u2019t necessarily be in either party\u2019s best interests to say so. But if Nvidia doesn\u2019t pay or comply and LAPSUS$ does have the data it claims, things might be about to get interesting.<\/p>\n<\/div>\n
\n
<\/br><\/code><\/p>\n\n