InfoSecBulletin Cybersecurity for mankind
BleepingComputer reported NVIDIA has confirmed in a statement that GeForce NOW user information has been exposed in a data breach. The big gaming and hardware company said the effect is only in Armenia and happened because a regional partner’s system was compromised.
The company added that its own network was not impacted by the incident.
Cisco Unified CM flaw CVE-2026-20230 exploited in attacks
LastPass says hackers stole customer data via Klue, supply chain breach
New Apple Exploit Bypasses Boot Defenses, Possibly Affects Millions of iPhones Worldwide
India’s Tata Electronics hit by cyber breach: Hacker target 630 GB record
Anthropic’s Mythos reportedly broke NSA classified systems in hours
OpenAI New Method “Deployment Simulation” Predicts AI Risks Before Deployment
AryStinger botnet infected thousands of D-Link routers globally
Hacker suspected of sending alerts across Brazil
CyberSentinel AI features 33 security tools like Nmap, SQLMap, and ZAP, utilizing Claude and GPT
Barracuda hosts Dhaka roundtable on cyber resilience
“Our investigation found no impact on NVIDIA-operated services. The issue is limited to systems run by a third-party GeForce NOW Alliance partner based in Armenia. We are working closely with the partner to support their investigation and resolution. Impacted users will be notified by GFN.am,” the company said.
The statement replies to a post from last week on a hacker forum. A threat actor using the name ShinyHunters said they hacked the GeForce NOW service and took millions of user records.
The hacker said the stolen information has names, email addresses, usernames, birth dates, membership status, and 2FA/TOTP status.
The threat actor also posted samples of the stolen data and offered the full database for $100,000 paid in Bitcoin or Monero.
The NVIDIA GeForce NOW service lets users play games on their devices that are running on stronger computers using NVIDIA graphics cards in a data center.
GFN.am is the Armenian regional operator for GeForce NOW, responsible for operating NVIDIA’s service in the country.
A statement posted by GFN.am confirms a cybersecurity incident that took place between March 20 and 26 and exposed the following information:
Full name (if using a Google account)
Email address
Phone number (if registered through a mobile operator)
Date of birth
Username
GFN.am has said that no account passwords were leaked, and users who signed up after March 9 are safe.
GFN.am helps run GeForce NOW in Azerbaijan, Georgia, Kazakhstan, Moldova, Ukraine, and Uzbekistan, but there’s no report of any effect on these places according to NVIDIA’s help page.
BleepingComputer reported that the threat actor’s post has now been removed from the hacker forum. It is unclear if the database has been sold to a buyer or if the seller or forum administrators deleted it.
