34.1 C
Delhi

Hackers are using Stolen Nvidia certificates to authenticate malware

Hackers that broke into Nvidia’s network disclosed a stockpile of stolen data, including genuine code-signing certificates presently being exploited in the wild. Several security experts have obtained instances of suspicious software payloads that leverage at least two of Nvidia’s digital certificates, according to reports. In a tweet on Friday, threat expert Mehmet Ergene detected many malicious files signed with one of the Nvidia certificates.

The certificates were purportedly provided as a current data payload by criminal hackers linked to the Lapsus$ ransomware group. The organisation claimed to have gained access to Nvidia’s business network and a large internal data cache.

Even though one of the security certificates is old, dating back to 2014, it is still valid for Windows systems. As a result, attackers can utilise the certificate to make their malware payloads appear legitimate AMD software updates.

Nvidia has yet to reply to a request for comment on the certificates’ publication. Although researchers have released Yara rules that administrators may employ to detect and stop malicious downloads, many end users may still be vulnerable to malware payloads masquerading as Nvidia graphics card firmware or software upgrades.

- Advertisement -TechnoSports-Ad

“On February 23, 2022, NVIDIA became aware of a cybersecurity incident which impacted IT resources,” Nvidia said in a statement earlier this week. “Shortly after discovering the incident, we further hardened our network, engaged cybersecurity incident response experts, and notified law enforcement.”

Nvidia
NVIDIA certificates used to sign malware, Source: Florian Roth

Hackers are using Stolen Nvidia certificates to authenticate malware

Nvidia has stated that the network intrusion had no impact on its day-to-day operations and did not expect it to alter. Meanwhile, the Lapsus$ hackers have threatened to expose more Nvidia material, including technical insights about future GPU designs and graphics card platforms.

The group’s primary demand is that Nvidia releases its graphics card drivers as open-source projects, which would allow developers to optimise the hardware better and add new features.

- Advertisement -TechnoSports-Ad
Nvidia
NVIDIA certificates used to sign malware, Source: Florian Roth

The hacker group specifically requests that Nvidia eliminate its Lite Hash Rate (LHR) limits, limiting GPUs’ ability to compute the equations required to mine cryptocurrencies. Nvidia used LHR to reduce the gaming sector’s mining purchases of graphics cards, which resulted in a vast product shortage.

Also Read:

NVIDIA hackers have now targeted Samsung in their latest heist

Source

LEAVE A REPLY

Please enter your comment!
Please enter your name here

This site uses Akismet to reduce spam. Learn how your comment data is processed.

Nivedita Bangari
Nivedita Bangari
I am a software engineer by profession and technology is my love, learning and playing with new technologies is my passion.
TechnoSports-Ad

Popular

TechnoSports-Ad

Related Stories

More from author

The best apps for translating from English to Hindi in 2024 (March 29)

More than 500 million people worldwide speak Hindi, making it the third most widely used language. However, English is the most commonly used language...

The Best Spotify Alternatives in 2024 that You Must Know

Best Spotify Alternatives in 2024: The well-known music streaming service Spotify has completely changed how we listen to and appreciate music. Spotify satisfies the...

Full Form of MLC: Roles and Responsibilities of an MLC (March 29)

Full Form of MLC: MLC stands for "Member of the Legislative Council," whereas Vidhan Parishad is another name for any state's legislative body. The...

Save from net YouTube: How to download free YouTube videos as of March 29

Save from net youtube: The Ultimate Guide SaveFrom.net is a free online video downloader that allows you to save videos from websites such as...