Alleged NVIDIA GeForce NOW Data Breach: ShinyHunters Claims Millions of Records

[viper37]

News link

TL;DR: The GeForce NOW Data Leak

• Who: ShinyHunters is claiming responsibility.
• What: A database allegedly containing millions of GeForce NOW user records.
• Exposed Data: Names, verified emails, usernames, dates of birth, membership status, and 2FA/TOTP metadata.
• Status: Unverified by NVIDIA; sample data posted on dark web forums.
• Action Required: Reset your password and watch for phishing attempts.

What's in the Alleged Leak
According to the forum listing, the stolen dataset is large and specific enough to be genuinely useful for follow-on attacks. ShinyHunters claims it contains:

• Full Names and Usernames: Real identities tied to gaming handles.
• Verified Email Addresses: Ready-made targeting lists for phishing campaigns.
• Dates of Birth: Useful for identity verification and profiling.
• Membership Details: Subscription tiers and account age.
• 2FA / TOTP Status: Flags showing which accounts have two-factor authentication turned on.
• Internal Account Metadata: Roles and attributes from NVIDIA's internal systems.

For those of you who have a GeForce Now account (Keynes, I believe), it's a concerning breach.  Allegedly.