Last week, NVIDIA confirmed that there was an attack, despite claiming that none of its customers’ information was compromised, and we’ve relayed that to you. Normal users didn’t have to worry too much, though hackers made very strange demands that NVIDIA threatened to release sensitive corporate data if they didn’t unlock some of the most powerful graphics cards for cryptocurrency mining.
At least it seemed so, but that turned out not to be the case. After the attack, we witnessed one of the first effects on users. NVIDIA GPU driver packages containing malware are available for users to download.
You may be downloading malware because I’m downloading an NVIDIA driver
Malicious people link links pretending to be drivers in hopes of installing viruses, trojans, and other malicious software on a user’s computer. They started publishing. This means that hackers have leaked NVIDIA’s official code signing certificates.
When users download these files, they are downloading files containing a number of popular malware packages, bypassing Windows Defender’s built-in executable verification and leaving anti-virus software behind.
While it is possible to prevent the installation of packages with expired codes using Windows Defender, this is not a known issue. For regular users looking for the latest video card drivers (or any driver), our advice is to only download from the official source. You can use NVIDIA’s own site or the GeForce Experience application for this.
52745
