NVIDIA confirms GeForce NOW data breach linked to Armenian partner infrastructure

NVIDIA, the U.S.-based graphics processing and artificial intelligence technology company, has confirmed that user data associated with its GeForce NOW cloud gaming platform was exposed in a cybersecurity incident involving systems operated by a regional service partner in Armenia.

The company said the breach did not affect NVIDIA-operated infrastructure and was limited to systems managed by GFN.am, the Armenian alliance partner responsible for regional GeForce NOW operations.

“Our investigation found no impact on NVIDIA-operated services,” the company said in a statement. “The issue is limited to systems run by a third-party GeForce NOW Alliance partner based in Armenia. We are working closely with the partner to support their investigation and resolution. Impacted users will be notified by GFN.am.”

The statement followed claims posted on a hacker forum by a threat actor using the name “ShinyHunters,” who alleged responsibility for breaching the GeForce NOW service and stealing millions of user records. The individual later offered the database for sale for $100,000 payable in Bitcoin or Monero.

The actor claimed the stolen information included full names, email addresses, usernames, dates of birth, membership details, and two-factor authentication or TOTP status information. Sample data allegedly taken from the breach was also published online.

The individual behind the forum post is believed to be impersonating the well-known ShinyHunters cybercrime group.

GFN.am confirmed that a cybersecurity incident occurred between March 20 and March 26. The company said the exposed information may include users’ full names when linked through Google accounts, email addresses, phone numbers registered through mobile operators, dates of birth, and usernames.

The operator stated that passwords were not exposed in the incident and said users who registered after March 9 were not affected.

GeForce NOW is NVIDIA’s cloud gaming platform that allows users to stream video games running on remote high-performance systems equipped with NVIDIA GPUs.

Alliance partners supporting the platform in regional markets can maintain separate authentication systems, customer databases, billing platforms, and localized infrastructure independent from NVIDIA’s primary network.

According to NVIDIA’s support documentation, GFN.am also oversees GeForce NOW services in Azerbaijan, Georgia, Kazakhstan, Moldova, Ukraine, and Uzbekistan. No confirmed impact involving users in those countries has been disclosed.