Hackers Behind Nvidia Breach Are Now Selling Ethereum Mining Bypass for GPUs

The hackers who claim to have stolen 1TB of data from Nvidia are now trying to sell the information, including a way to unlock the Ethereum mining limiter on the company’s PC graphics cards

The hacking group, dubbed LAPSUS$, floated the offer to interested buyers on Monday in the group’s public chat room. The hackers claim to possess a customized driver, capable of easily unlocking Nvidia’s Lite Hash Rate limiter across the RTX 3000 GPU series. 

“If someone buy us the LHR, we will provide ways to [mess with] LHR without flashing anything,” the hackers wrote, adding: “Without flashing = big money for any miner developer.”

This comes after the hackers initially encountered a problem when trying to steal data from Nvidia. According to LAPSUS$, Nvidia retaliated by encrypting a machine the hackers were using to exfiltrate the data from the company. 

However, LAPSUS$ claims Nvidia only managed to encrypt one of the group’s virtual machines during the breach. “Nvidia tried but failed, we have all the data,” the hackers said.   

Postings from the hacking group.

Nvidia did not immediately respond to a request for comment. (Previously, it said: “Our business and commercial activities continue uninterrupted. We are still working to evaluate the nature and scope of the event and don’t have any additional information to share at this time.”)

But LAPSUS$ wants Nvidia to pay up in cryptocurrency. In the meantime, the hacking group has already dumped a 19GB archive that allegedly contains source code for Nvidia GPU drivers. The archive also has enough information to help tech-savvy users undermine the Lite Hash Rate limiter. “Any developer with a good brain can compile what we gave you,” the hackers said.

Recommended by Our Editors

On Sunday, the group also demanded that Nvidia lift the LHR limiter for all RTX 3000 graphics cards through a software update to consumers. If Nvidia refuses, LAPSUS$ said it would leak a large folder containing information on the company’s hardware. However, the hacking group now says it wants to sell a driver capable of lifting the Lite Hash Rate limiter. 

So the earlier demand may have been an attempt to gain publicity. Another possibility is that LAPSUS$ is lying, and desperate to monetize the hack in any way possible.

It’s also important to note the breach occurs days after another hacker claimed to be offering a way to unlock the Ethereum mining limiter on Nvidia’s graphics cards. However, the tool turned out to be a Trojan malware program.

Like What You’re Reading?

Sign up for Security Watch newsletter for our top privacy and security stories delivered right to your inbox.

This newsletter may contain advertising, deals, or affiliate links. Subscribing to a newsletter indicates your consent to our Terms of Use and Privacy Policy. You may unsubscribe from the newsletters at any time.