Feeds

NVIDIA Developer Zone, user forums plundered in hack attack

Yarr! These passwords be salty but the rest be plain

Top 5 reasons to deploy VMware with Tegile

Graphics processor biz NVIDIA has contacted users of its discussion forums and Developer Zone to warn that its servers have been hacked.

The message boards hosted at forums.nvidia.com and the programming resource developer.nvidia.com were breached last week. Data lifted from the compromised systems included account passwords although they were properly salted and stored as a one-way encrypted hash.

As soon as the chip designer became aware of the attack it shut them down, and started trying to work out what went wrong. NVIDIA is still trying to do that, but mailed users (including a brace of El Reg readers) to let them know their data has been compromised.

That information includes usernames and email addresses, along with the per-user "About Me" profile page details which are public-facing anyway.

The passwords were salted with random numbers so should remain secure against most brute-force attacks. Punters who have adopted the one-passphrase-for-everything approach are advised to run around changing all their logins anyway.

NVIDIA said that once the forums are purged of badness, it will send out new passwords to everyone, via their registered email addresses, and will post a public message on the status page when that's completed.

Any email that appears to have been sent by NVIDIA requesting "personal, financial or sensitive information" should be ignored, the company warned in an attempt to nip opportunistic phishing attempts in the bud. ®

Remote control for virtualized desktops

More from The Register

next story
UK smart meters arrive in 2020. Hackers have ALREADY found a flaw
Energy summit bods warned of free energy bonanza
DRUPAL-OPCALYPSE! Devs say best assume your CMS is owned
SQLi hole was hit hard, fast, and before most admins knew it needed patching
Knock Knock tool makes a joke of Mac AV
Yes, we know Macs 'don't get viruses', but when they do this code'll spot 'em
Feds seek potential 'second Snowden' gov doc leaker – report
Hang on, Ed wasn't here when we compiled THIS document
Mozilla releases geolocating WiFi sniffer for Android
As if the civilians who never change access point passwords will ever opt out of this one
Why weasel words might not work for Whisper
CEO suspends editor but privacy questions remain
prev story

Whitepapers

Choosing cloud Backup services
Demystify how you can address your data protection needs in your small- to medium-sized business and select the best online backup service to meet your needs.
Getting started with customer-focused identity management
Learn why identity is a fundamental requirement to digital growth, and how without it there is no way to identify and engage customers in a meaningful way.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Intelligent flash storage arrays
Tegile Intelligent Storage Arrays with IntelliFlash helps IT boost storage utilization and effciency while delivering unmatched storage savings and performance.
The Heartbleed Bug: how to protect your business with Symantec
What happens when the next Heartbleed (or worse) comes along, and what can you do to weather another chapter in an all-too-familiar string of debilitating attacks?