Redakcja Choose TV
NVIDIA has confirmed a cyber attack related to the GeForce NOW service. User data may have been compromised, but the company reassures that the issue is limited to a regional partner serving several countries in Eastern Europe and Asia, and not the main infrastructure of Nvidia.
Cybercriminals Put User Data Up for Sale
Information about the leak has appeared on one of the hacker forums, where a cybercriminal attempted to sell the database for about $100,000. According to initial reports, the database allegedly contained, among other things, email addresses, usernames, dates of birth, subscription status, and information related to two-factor authentication. Nvidia later confirmed that the attack targeted the company GFN.am, which is responsible for the regional operation of GeForce NOW in Armenia, Azerbaijan, Georgia, Kazakhstan, Moldova, Ukraine, and Uzbekistan, among others. However, the company emphasizes that Nvidia's main services were not compromised.
Passwords Were Supposed to Remain Secure
According to official information, the cyberattack took place between March 20 and March 28, 2026. The stolen data primarily includes basic user information such as names, email addresses, phone numbers, and account names. However, the most important point is that, according to current findings, user passwords were not leaked. The whole situation is additionally strange because the person posting the sale offer was impersonating the well-known group ShinyHunters. The group later denied any connections to this attack. In the meantime, the post offering the sale of the data has disappeared from the forum, which may indicate the removal of the announcement or the sale of the database to another entity.
Nvidia confirmed the data leak related to GeForce NOW, but the issue only concerns a regional partner operating outside the company's main infrastructure. According to current information, user passwords were said to remain secure.
source: Nvidia
