NVIDIA certificates are used to sign malware, allowing malicious programs to legitimize and slide past security defences into Windows machines.
Two NVIDIA code signing certificates were part of the February ransom attack. Lapsus $ Group company certificates have now been used to sign software so that malicious programs can slide security over Windows machines.
The attack saw 1TB data leak in graphics processing units (GPUs): migration that includes hardware schematics, firmware, drivers, email accounts and password prompts for more than 71,000 employees, and more.
Read More: https://threatpost.com/nvidias-stolen-code-signing-certs-sign-malware/178784/
