{
	"id": "c51a0b34-e675-4f8a-8150-d3c11838d6c7",
	"created_at": "2026-04-06T03:37:00.220371Z",
	"updated_at": "2026-04-10T03:28:46.850406Z",
	"deleted_at": null,
	"sha1_hash": "e9efa8a3a0be45e7b0f093577c8aac16eb04a8dd",
	"title": "GPU giant NVIDIA is investigating a potential cyberattack",
	"llm_title": "",
	"authors": "",
	"file_creation_date": "0001-01-01T00:00:00Z",
	"file_modification_date": "0001-01-01T00:00:00Z",
	"file_size": 775204,
	"plain_text": "GPU giant NVIDIA is investigating a potential cyberattack\r\nBy Sergiu Gatlan\r\nPublished: 2022-02-25 · Archived: 2026-04-06 02:51:32 UTC\r\nUS chipmaker giant Nvidia confirmed today it's currently investigating an \"incident\" that reportedly took down some of its\r\nsystems for two days.\r\nSystems impacted in what looks like a cyberattack include the company's developer tools and email systems, as first\r\nreported by The Telegraph.\r\nThe reported outage is the result of a network intrusion, and it is still not known if any business or customer data was stolen\r\nduring the incident.\r\nhttps://www.bleepingcomputer.com/news/security/gpu-giant-nvidia-is-investigating-a-potential-cyberattack/\r\nPage 1 of 4\n\n0:00\r\nhttps://www.bleepingcomputer.com/news/security/gpu-giant-nvidia-is-investigating-a-potential-cyberattack/\r\nPage 2 of 4\n\nVisit Advertiser websiteGO TO PAGE\r\nNvidia told BleepingComputer that the nature of the incident is still being evaluated and that the company's commercial\r\nactivities were not affected.\r\n\"We are investigating an incident. Our business and commercial activities continue uninterrupted,\" an Nvidia spokesperson\r\ntold BleepingComputer.\r\n\"We are still working to evaluate the nature and scope of the event and don't have any additional information to share at this\r\ntime.\"\r\nAn insider has described this incident as having \"completely compromised\" Nvidia's internal systems.\r\nWhile some reports are speculating that Russia is behind this incident, there is nothing indicating this is true at the time.\r\nOn February 8, the American chipmaker terminated previously announced efforts to acquire British semiconductor giant\r\nArm for $80 billion.\r\nUpdate February 26, 07:55 EST: The Lapsus$ data extortion group claims they breached and stole 1 TB of data from\r\nNvidia's network.\r\nThey also leaked online what they claim to be password hashes for all Nvidia employees.\r\nBleepingComputer has not been able to independently verify the gang's claims yet.\r\nImage: BleepingComputer\r\nhttps://www.bleepingcomputer.com/news/security/gpu-giant-nvidia-is-investigating-a-potential-cyberattack/\r\nPage 3 of 4\n\nAutomated Pentesting Covers Only 1 of 6 Surfaces.\r\nAutomated pentesting proves the path exists. BAS proves whether your controls stop it. Most teams run one without the\r\nother.\r\nThis whitepaper maps six validation surfaces, shows where coverage ends, and provides practitioners with three diagnostic\r\nquestions for any tool evaluation.\r\nSource: https://www.bleepingcomputer.com/news/security/gpu-giant-nvidia-is-investigating-a-potential-cyberattack/\r\nhttps://www.bleepingcomputer.com/news/security/gpu-giant-nvidia-is-investigating-a-potential-cyberattack/\r\nPage 4 of 4",
	"extraction_quality": 1,
	"language": "EN",
	"sources": [
		"ETDA"
	],
	"references": [
		"https://www.bleepingcomputer.com/news/security/gpu-giant-nvidia-is-investigating-a-potential-cyberattack/"
	],
	"report_names": [
		"gpu-giant-nvidia-is-investigating-a-potential-cyberattack"
	],
	"threat_actors": [
		{
			"id": "be5097b2-a70f-490f-8c06-250773692fae",
			"created_at": "2022-10-27T08:27:13.22631Z",
			"updated_at": "2026-04-10T02:00:05.311385Z",
			"deleted_at": null,
			"main_name": "LAPSUS$",
			"aliases": [
				"LAPSUS$",
				"DEV-0537",
				"Strawberry Tempest"
			],
			"source_name": "MITRE:LAPSUS$",
			"tools": [
				"Mimikatz"
			],
			"source_id": "MITRE",
			"reports": null
		},
		{
			"id": "d4b9608d-af69-43bc-a08a-38167ac6306a",
			"created_at": "2023-01-06T13:46:39.335061Z",
			"updated_at": "2026-04-10T02:00:03.291149Z",
			"deleted_at": null,
			"main_name": "LAPSUS",
			"aliases": [
				"Lapsus",
				"LAPSUS$",
				"DEV-0537",
				"SLIPPY SPIDER",
				"Strawberry Tempest",
				"UNC3661"
			],
			"source_name": "MISPGALAXY:LAPSUS",
			"tools": [],
			"source_id": "MISPGALAXY",
			"reports": null
		},
		{
			"id": "2347282d-6b88-4fbe-b816-16b156c285ac",
			"created_at": "2024-06-19T02:03:08.099397Z",
			"updated_at": "2026-04-10T02:00:03.663831Z",
			"deleted_at": null,
			"main_name": "GOLD RAINFOREST",
			"aliases": [
				"Lapsus$",
				"Slippy Spider ",
				"Strawberry Tempest "
			],
			"source_name": "Secureworks:GOLD RAINFOREST",
			"tools": [
				"Mimikatz"
			],
			"source_id": "Secureworks",
			"reports": null
		},
		{
			"id": "52d5d8b3-ab13-4fc4-8d5f-068f788e4f2b",
			"created_at": "2022-10-25T16:07:24.503878Z",
			"updated_at": "2026-04-10T02:00:05.014316Z",
			"deleted_at": null,
			"main_name": "Lapsus$",
			"aliases": [
				"DEV-0537",
				"G1004",
				"Slippy Spider",
				"Strawberry Tempest"
			],
			"source_name": "ETDA:Lapsus$",
			"tools": [],
			"source_id": "ETDA",
			"reports": null
		}
	],
	"ts_created_at": 1775446620,
	"ts_updated_at": 1775791726,
	"ts_creation_date": 0,
	"ts_modification_date": 0,
	"files": {
		"pdf": "https://archive.orkl.eu/e9efa8a3a0be45e7b0f093577c8aac16eb04a8dd.pdf",
		"text": "https://archive.orkl.eu/e9efa8a3a0be45e7b0f093577c8aac16eb04a8dd.txt",
		"img": "https://archive.orkl.eu/e9efa8a3a0be45e7b0f093577c8aac16eb04a8dd.jpg"
	}
}