be quiet Pure Loop 2 FX 280mm LCS review
HP FX900 1 TB NVMe Review
Scythe FUMA2 Rev.B CPU Cooler review
SK Hynix Platinum P41 2TB M.2 NVMe SSD Review
Corsair K70 RGB PRO Mini Wireless review
MSI MPG A1000G - 1000W PSU Review
Goodram IRDM PRO M.2 SSD 2 TB NVMe SSD Review
Samsung T7 Shield Portable 1TB USB SSD review
DeepCool LS720 (LCS) review
Fractal Design Pop Air RGB Black TG review
Hackers use stolen Nvidia certificates to conceal malware.
Stolen NVIDIA code signing certificates are used in order to seem trustworthy and allow malicious drivers and applications to be installed on Windows.
NVIDIA acknowledged this week that they were the victim of a hack in which threat actors stole employee credentials and confidential data. According to the extortion gang Lapsus$, they obtained 1TB of data during the hack and began distributing it online when NVIDIA declined to bargain with them.
Two stolen code-signing certificates were used by NVIDIA engineers to sign their drivers and executables, according to the leak. Despite the fact that both stolen NVIDIA certificates are expired, Windows will enable a driver certified with the certificates to be installed in the operating system.
Using these stolen certificates, threat actors may make their apps appear to be legal NVIDIA programs, allowing malicious drivers to be installed by Windows.
NVIDIA Data Breach Aftermath Gets more serious, hackers make new demand - 03/02/2022 09:35 AM
The aftermath of the NVIDIA breach is slowly disclosing more and more info about pending products. Yesterday an older version of DLSS source code was already spotted, new GPU architectures have been c...
Ransomware Hackers Demands Nvidia Lite Lift Hash Rate Restriction - 02/28/2022 06:16 PM
Hacker group Lapsus$ obtained access to Nvidia's servers for a week and took 1TB of driver and firmware files. The group is seeking for the Lite Hash Rate limitations on Nvidia GPUs to be lifted....
Hackers abandon ransomware plots and share decryption key - 08/31/2021 09:07 AM
According to Bleeping Computer, the Ragnarok hacking organization has abruptly ceased carrying out ransomware operations and has publicly distributed a key to unlock files that have been encrypted. ...
Acer Hit by Ransomware - Hackers Want $50M - 03/29/2021 08:49 AM
Acer fell victim to the REvil ransomware group responsible for the attack of several other companies over the past months, reported Bleeping Computer. The attackers are demanding $50 million from the ...
Hackers Hijacked ASUS Software Updates and Installed Backdoors on Many PC's and Laptops - 03/25/2019 05:42 PM
ASUS is believed to have pushed malware to hundreds of thousands of customers through its trusted automatic software update tool after attackers compromised the company's server and used it to push t...
Loobyluggs
Senior Member
Posts: 4799
Joined: 2008-09-07
Senior Member
Posts: 4799
Joined: 2008-09-07
#5998665 Posted on: 03/07/2022 10:57 AM
COOL
COOL
Spets
Senior Member
Posts: 3257
Joined: 2011-05-10
Senior Member
Posts: 3257
Joined: 2011-05-10
#5998675 Posted on: 03/07/2022 12:20 PM
Yeaaahhhhh won't be downloading anything that isn't straight from their website from now on.
Yeaaahhhhh won't be downloading anything that isn't straight from their website from now on.
asturur
Senior Member
Posts: 1219
Joined: 2010-05-12
Senior Member
Posts: 1219
Joined: 2010-05-12
#5998677 Posted on: 03/07/2022 12:27 PM
Not even that. super legit signatures with the private key ( expired ).
THIS is a big deal... certificate hacking and spoofing...
Not even that. super legit signatures with the private key ( expired ).
Horus-Anhur
Senior Member
Posts: 4106
Joined: 2013-02-05
Senior Member
Posts: 4106
Joined: 2013-02-05
#5998692 Posted on: 03/07/2022 01:33 PM
This hack just keeps getting worse ad worse, by the day.
This hack just keeps getting worse ad worse, by the day.
Click here to post a comment for this news story on the message forum.
Senior Member
Posts: 2202
Joined: 2011-01-05
THIS is a big deal... certificate hacking and spoofing...