Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons

Social Media

Hackers News Hackers News
  • CyberSecurity News
  • Threats
  • Attacks
  • Vulnerabilities
  • Breaches
  • Comparisons
Search the Site
Popular Searches:
technology Amazon AI
Recent Posts
AnyDesk Critical 0-Day Vulnerability Lets Attackers Trigger DoS
July 16, 2026
Next.js Launches Monthly Security Releases, Patches 9 Vulnerabilities
July 16, 2026
SonicWall SMA 1000 Zero-Day Actively Exploited
July 16, 2026
Home/CyberSecurity News/NVIDIA Data Breach Exposes GeForce User Data, Leaked Employee Credentials
CyberSecurity News

NVIDIA Data Breach Exposes GeForce User Data, Leaked Employee Credentials

Key Takeaways An NVIDIA GeForce NOW cloud gaming service provider, GFN.AM, experienced a data breach. Personal information for users registered on or before March 9, 2026, including email addresses,...

Emy Elsamnoudy
Emy Elsamnoudy
May 9, 2026 3 Min Read
53 0

Key Takeaways

  • An NVIDIA GeForce NOW cloud gaming service provider, GFN.AM, experienced a data breach.
  • Personal information for users registered on or before March 9, 2026, including email addresses, phone numbers, and full names, was exposed.
  • Account passwords were not compromised, but the leaked data heightens the risk of phishing, SIM swapping, and social engineering attacks.

GFN.AM Data Breach Impacts GeForce NOW Users

GFN.AM, an authorized provider of the NVIDIA GeForce NOW cloud gaming service operating under the entity “GFN CLOUD INTERNET SERVICES” LLC, has confirmed a data breach affecting the personal information of its registered user base. The incident, publicly disclosed on May 5, 2026, revealed that unauthorized access to the company’s database began nearly two months earlier, on March 9, 2026.

Table Of Content

  • Key Takeaways
  • GFN.AM Data Breach Impacts GeForce NOW Users
  • Compromised Data Categories
  • Company Response and Mitigation
  • What You Should Do

The breach went undetected until May 2, 2026, creating a 54-day window during which threat actors potentially accessed user records. GFN.AM verified that the malicious party successfully gained entry to its backend database, leading to the exfiltration or viewing of sensitive user data.

Crucially, only accounts created on or before March 9, 2026, are affected by this security incident. Users who registered after this date were not impacted.

Compromised Data Categories

According to the official statement from GFN.AM, the following categories of personal data may have been compromised:

  • Email addresses
  • Phone numbers (for users who registered via a mobile operator)
  • Date of birth
  • Full name (first and last), specifically for users who authenticated through Google Sign-In
  • GFN.AM platform username

While the company explicitly stated that user account passwords were not compromised, mitigating the immediate threat of direct account takeover, the combination of exposed email addresses, phone numbers, and full names presents a substantial risk. This data is highly valuable for sophisticated phishing campaigns, SIM swapping attacks, and various forms of social engineering targeting affected individuals.

Company Response and Mitigation

Upon discovering the breach, GFN.AM reported taking immediate action to address the root cause of the unauthorized access. The provider has also implemented additional organizational and technical security measures to strengthen its information systems and reduce the likelihood of future incidents. However, the public disclosure did not provide specific technical details regarding the nature of the breach, such as whether it involved compromised credentials, an unpatched vulnerability, or a misconfigured database.

Security experts emphasize that even without password exposure, the leaked personal identifiers are extremely useful to cybercriminals. Such data is frequently leveraged in targeted phishing schemes and credential-stuffing attacks. Users who utilized Google Sign-In should be particularly vigilant, as their full names were among the exposed fields.

GFN.AM has not yet publicly confirmed whether individual notifications will be sent to affected users or if relevant regulatory authorities have been informed of the breach.

What You Should Do

Users registered with GFN.AM on or before March 9, 2026, should take the following proactive steps:

  • Actively monitor all email accounts for suspicious login attempts, password reset requests, or any unsolicited messages that appear to be phishing attempts.
  • Exercise extreme caution with any unexpected calls or SMS messages that claim to be from or reference GFN.AM.
  • Enable multi-factor authentication (MFA) on all linked Google and primary email accounts to add an extra layer of security.
  • Consider placing a fraud alert with relevant financial institutions if there is any suspicion that additional, more sensitive personal data may have been compromised.

Disclaimer: HackersRadar reports on cybersecurity threats and incidents for informational and awareness purposes only. We do not engage in hacking activities, data exfiltration, or the hosting or distribution of stolen or leaked information. All content is based on publicly available sources.

Tags:

BreachPatchphishingSecurityThreatVulnerability

Share Article

Emy Elsamnoudy

Emy Elsamnoudy

Emy is a cybersecurity analyst and reporter specializing in threat hunting, defense strategies, and industry trends. With expertise in proactive security measures, Emily covers the tools and techniques organizations use to detect and prevent cyber attacks. She is a regular speaker at security conferences and has contributed to industry reports on threat intelligence and security operations. Emily's reporting focuses on helping organizations improve their security posture through practical, actionable insights.

Previous Post

Critical Microsoft 365 Copilot Vulnerabilities Expose Sensitive Data

Next Post

TCLBANKER Malware Spreads via WhatsApp and Outlook Worm Modules

No Comment! Be the first one.

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

Popular Posts
Dutch Police Dismantle €100M Investment Fraud Network, 20 Call Centers Shut Down
July 16, 2026
JetBrains Patches 6 Vulnerabilities in TeamCity, YouTrack, IntelliJ IDEA
July 16, 2026
WhatsApp GhostPairing Flaw Lets Attackers Hijack Accounts
July 16, 2026
Top Authors
Marcus Rodriguez
Marcus Rodriguez
Emy Elsamnoudy
Emy Elsamnoudy
Jennifer sherman
Jennifer sherman
Let's Connect
156k
2.25m
285k

Related Posts

Jennifer sherman
By Jennifer sherman
Threats

GlassWorm Attacks macOS via Malicious VS Code…

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Attacks

ClickFix Attack Hides Malicious Code via Stegan Security

January 1, 2026
Sarah simpson
By Sarah simpson
Vulnerabilities

MongoBleed Detector Tool Released to Detect MongoDB Vulnerability(CVE-2025-14847)

January 1, 2026
Emy Elsamnoudy
By Emy Elsamnoudy
Breaches

Conti Ransomware Gang Leaders & Infrastructure Exposed

January 1, 2026
Hackers News Hackers News
  • [email protected]

Quick Links

  • Contact Us
  • Privacy Policy
  • Terms of service

Categories

Attacks
Breaches
Comparisons
CyberSecurity News
Threats
Vulnerabilities

Let's keep in touch

receive fresh updates and breaking cyber news every day and week!

All Rights Reserved by HackersRadar ©2026

Follow Us