Back

NVIDIA Confirms Data Breach Affecting GeForce NOW Users in Armenia

Severity: Medium (Score: 51.9)

Sources: Bleepingcomputer, Cybersecuritynews, gfn.am

Summary

NVIDIA has confirmed a data breach affecting GeForce NOW users in Armenia, caused by a compromise of a regional partner's infrastructure. The breach exposed user information including full names, email addresses, usernames, dates of birth, and membership status. No account passwords were compromised, and users who registered after March 9, 2026, are not affected. The incident occurred between March 20 and 26, 2026, and was disclosed following a hacker forum post by a threat actor claiming to have stolen millions of records. NVIDIA's own network remains secure, and the company is working with the local partner, GFN.am, to address the issue. Users impacted will be notified directly by GFN.am. Key Points: • Data breach affects GeForce NOW users in Armenia due to a regional partner's compromise. • Exposed data includes personal information but not account passwords. • Incident occurred between March 20-26, 2026, with notifications to impacted users underway.

Key Entities

  • ShinyHunters (apt_group)
  • Data Breach (attack_type)
  • GFN Cloud Internet Services LLC (company)
  • Nvidia (company)
  • Armenia (country)
  • Azerbaijan (country)
  • Georgia (country)
  • Kazakhstan (country)
  • Moldova (country)
  • CWE-200 - Exposure of Sensitive Information (cwe)
  • gfn.am (domain)
  • T1041 - Exfiltration Over C2 Channel (mitre_attack)
  • T1567 - Exfiltration Over Web Service (mitre_attack)
  • GeForce NOW (platform)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed