NVIDIA Forums Hacked, User Data Compromised
Late Thursday, NVIDIA deactivated its user forums (forums.nvidia.com) on the company website, citing security reasons. According to the company, a security breach was discovered. Critical user data may have been compromised.
Late Thursday, NVIDIA deactivated its user forums (forums.nvidia.com) on the company website, citing security reasons. According to the company, a security breach was discovered (the forums website was hacked). Critical user data may have been compromised (stolen). Even as investigations into the breach are underway, the company ascertained that the hackers gained access to user data such as user names, hashed passwords along with random salt value, e-mail addresses of the users, and contents of the "About Me" field.
The forum passwords, according to NVIDIA, are not stored in plain text, but in a hashed form. Passwords in this form, along with random salt values, could have been accessed. Along with user names and passwords, the hackers also gained access to the registration e-mail addresses of the users. These addresses are typically used by forum software to send administrative messages (about registration status, private messages, friendship requests, infractions, and bans), and for password recovery.
NVIDIA will likely enforce a password (and possibly registration e-mail address) change once the forums are back online. The company also strongly recommended that people with similar login details on other forum websites, change their passwords and relevant info. To avoid having to remember multiple login details, it is common practice for online forum users to have similar (and sometimes, identical) user names and passwords for multiple websites.
If you have an NVIDIA forums account, and you think your VR-Zone forums login details are similar or identical, we recommend that you change your password on our forums, immediately.