Media reports say that US chipmaker Nvidia has confirmed that some of its data was stolen as part of a cyberattack that occurred last week.
We are aware that the threat actor took employee credentials and some Nvidia proprietary information from our systems and has begun leaking it online,” a company spokesman was quoted as saying by Engadget.
Nvidia did not specify exactly what was stolen from its computer systems. But according to PCMag, a group called LAPSUS$ is claiming responsibility for the attack. It said it obtained 1TB of data, including schematics and driver source code.
The collective is demanding a ransom paid in cryptocurrency to prevent Nvidia’s files from becoming public. It said the company has yet to contact it.
It is unlikely Nvidia will get in touch, the report said.
Following last year’s Colonial Pipeline cyberattack, the Biden administration has strongly discouraged businesses from cooperating with hackers.
“We do not anticipate any disruption to our business or our ability to serve our customers as a result of the incident,” the company said.
After becoming aware of the attack on February 23, Nvidia says it notified law enforcement and began working with cybersecurity experts to respond to the incident.
“We have no evidence of ransomware being deployed on the Nvidia environment or that this is related to the Russia-Ukraine conflict,” the company said.