It’s rumoured that NVIDIA hacked their hackers back. But how true is the narrative, and did the reverse-hacking work?
Lapsus$ Accused of Stealing 1TB of Data
Lapsus$ recently announced that they were able to obtain 1TB of NVIDIA data and that they were threatening to release passwords and security details from NVIDIA workers.
The claim was accompanied by screenshots but was deemed “inconclusive,” implying that the group “may or may not have had that data.” However, the group reported immediately after the assertion that “NVIDIA hacked it in retaliation.”
The firm allegedly left “one of its virtual machines” enrolled in NVIDIA’s own mobile device management tool, giving the corporation a “backdoor into its systems.” In addition, NVIDIA chose to encrypt the data remotely and potentially turn off Lapsus.
Ransomware Payments Allegedly Denied by NVIDIA
Lapsus$ stated that it would restore the data “for a price,” however the Brazilian government claims that they were able to recover the data without paying the hackers and that they were able to reinstall their systems barely a month later.
Lapsus$ initially stated that they would be holding the data for ransom. Later, however, the gang decided to criticize NVIDIA and even exploited the company’s political stance to “justify the attack.”
As of now, hackers claim that NVIDIA hacked them back and that they are now “leaking the data” in revenge. According to unconfirmed sources, Lapsus$ claims that NVIDIA’s security details were exposed on Telegram.
Just a Rumour?
The story has not been confirmed by NVIDIA, who initially stated that the corporation was still investigating the security incident. The claim that Lapsus$ leaked NVIDIA employees’ security details on Telegram has also not been confirmed.
Regardless, it appears that NVIDIA has had more than enough time to correct its employees’ security information and render the leaked data worthless.