Redakcja Choose TV
NVIDIA has confirmed a cyberattack related to the GeForce NOW service. User data is said to have been compromised, however, the company reassures that the issue concerns only a regional partner servicing several Eastern European and Asian countries, and not Nvidia's main infrastructure.
Cybercriminals have put user data up for sale
Information about the leak appeared on one of the hacking forums, where a cybercriminal attempted to sell a database for around 100 thousand dollars. According to initial reports, the database was said to contain, among other things, email addresses, usernames, dates of birth, subscription status, and information concerning two-factor authentication. Nvidia later confirmed that the attack targeted the company GFN.am, which is responsible for regional operations of GeForce NOW, among others, in Armenia, Azerbaijan, Georgia, Kazakhstan, Moldova, Ukraine, and Uzbekistan. However, the company emphasises that Nvidia's main services were not compromised.
Passwords were meant to remain secure
According to official information, the cyberattack took place between 20 and 28 March 2026. The stolen data mainly includes basic user information such as names, email addresses, phone numbers, and account names. However, the most important point is that, according to current findings, user passwords were not leaked. The entire situation is additionally strange because the person posting the sales offer impersonated a well-known group, ShinyHunters. The group later denied any links to this attack. In the meantime, the post offering the sale of the data has disappeared from the forum, which may indicate the removal of the advertisement or the sale of the database to another entity.
Nvidia has confirmed a data leak related to GeForce NOW, but the issue only involves a regional partner operating outside the company's main infrastructure. According to current information, user passwords were said to remain secure.
source: Nvidia
