Hackers Threaten to Release NVIDIA GPU Drivers Code, Firmware, and Hash Rate Limiter Bypass

ncrs · Feb 28, 2022

R-T-B said:
Honestly, I'd love if they were outted. I see the benefits as far outweighing the problems.

Yeah I get the benefits

The potential problems I see are, for example:

fake GPUs - by flashing the firmware/BIOS you can simply lie about what the chip really is
malicious firmware - the GPU is a complex supercomputer running software on many internal cores, most of them have DMA to the entire host system or the facility to use DMA via other parts of the GPU, an IOMMU will only be effective if it's present (thank you Intel for segmentation) and properly configured (which is again a software and human issue)

Maybe it's just me being paranoid due to my work

R-T-B · Feb 28, 2022

I'm a security researcher in the firmware world so I'm aware of the risks. I'll fully admit, I may simply be biased because those risks are less likely to affect me personally.

Bomby569 · Feb 28, 2022

ncrs said:
Yeah I get the benefits
The potential problems I see are, for example:

fake GPUs - by flashing the firmware/BIOS you can simply lie about what the chip really is

malicious firmware - the GPU is a complex supercomputer running software on many internal cores, most of them have DMA to the entire host system or the facility to use DMA via other parts of the GPU, an IOMMU will only be effective if it's present (thank you Intel for segmentation) and properly configured (which is again a software and human issue)

Maybe it's just me being paranoid due to my work

you can say that from any open software. So it should all be closed and proprietary because of it? That's a false question. Besides there's already fake gpu's around.

R-T-B · Mar 1, 2022

Bomby569 said:
you can say that from any open software. So it should all be closed and proprietary because of it? That's a false question. Besides there's already fake gpu's around.

Yes, but present fake gpus are reliant on old chips with unsigned firmware.

enzolt · Mar 1, 2022

I feel like this is such a win for Nvidia drivers for Linux...
Not to mention the artificial limiters Nvidia puts for video transcoding for Plex etc...

Bomby569 · Mar 1, 2022

R-T-B said:
Yes, but present fake gpus are reliant on old chips with unsigned firmware.

you can search the internet, some they don't even care to change the firmware, they just sell a fake gpu. In some cases you actually get a fake but better working gpu anyway

R-T-B · Mar 1, 2022

Bomby569 said:
you can search the internet, some they don't even care to change the firmware, they just sell a fake gpu.

That literally makes no sense at all. That would be a normal gpu, just outdated and mislabled.

I'd be very careful assuming I don't know this market.

Bomby569 · Mar 1, 2022

R-T-B said:
That literally makes no sense at all. That would be a normal gpu, just outdated and mislabled.

that! they say it's a 1050ti or whatever, but inside there's one of those old gpus like 450 idk

zlobby · Mar 1, 2022

lexluthermiester said:
Spoken like a tyrant. That statement is as much nonsense as it is bereft of conscience..

All I'm offering is the truth. The notion of dread one may feel during the realization is something I can't control.

Here is a mind cookie - what if I tell you that I can prove it to you 100%, no doubts, no ambiguity, no uncertainty? Are you willing to take the risk, only to find out that it's true?

But I can promise that even a million miles away from out pale bule dot, nobody knows or cares about borders, brands, presidents, religions, etc. And in cosmic terms a million miles is what the distance between two adjacent keys on the keyboard is to you.

enzolt · Mar 1, 2022

zlobby said:
All I'm offering is the truth. The notion of dread one may feel during the realization is something I can't control.

Here is a mind cookie - what if I tell you that I can prove it to you 100%, no doubts, no ambiguity, no uncertainty? Are you willing to take the risk, only to find out that it's true?

But I can promise that even a million miles away from out pale bule dot, nobody knows or cares about borders, brands, presidents, religions, etc. And in cosmic terms a million miles is what the distance between two adjacent keys on the keyboard is to you.

Man..where do you get your weed from?

zlobby · Mar 1, 2022

enzolt said:
Man..where do you get your weed from?

Weed alone don't do that. Even if I'm trully loco, are you willing to give it a thought, if only for the lulz? Just to see where the rabbit hole ends?

R-T-B · Mar 1, 2022

Bomby569 said:
that! they say it's a 1050ti or whatever, but inside there's one of those old gpus like 450 idk

Ah that's just rebranding fraud. Hard to avoid that obviously. I see what you mean.

Ibizadr · Mar 1, 2022

This is the play off the decade... One week ago worldwide tech fóruns claim:"someone on github create an rtx bypass"
1week after
nVidia: "whaaat? Test it out to see if they can bypass us."

Get rekt by hackers probably from the same creator off the lhr bypass since they claimed a v2 off their software.

zlobby · Mar 1, 2022

Ibizadr said:
This is the play off the decade... One week ago worldwide tech fóruns claim:"someone on github create an rtx bypass"
1week after
nVidia: "whaaat? Test it out to see if they can bypass us."

Get rekt by hackers probably from the same creator off the lhr bypass since they claimed a v2 off their software.

Sounds plausible. Either way it's a true 3D experience that goes well with popcorn.

Steevo · Mar 1, 2022

The possibility of fake GPUs VS finding out what’s in the black box of Physx that Nvidia has gimped around would be worth it to me. I don’t buy GPUs from other than retail or reputable sellers so it’s not an issue for me.

As far as malware at the firmware level that would have to be a hell of a good writer to get firmware on a machine, flash the GPU, and then load software from compromised drivers. Mobo bios malware was a thing but it’s was so niche that it wasn’t very useable and expanding its abilities caused things like boot sector writes and memory remap that was easy to spot, and with random addressing it’s going to be extremely hard for it to happen on a GPU.

Axaion · Mar 1, 2022

"helping gamers" lmao right

Fluffmeister · Mar 1, 2022

Axaion said:
"helping gamers" lmao right

Indeed, it's like asking Putin to not buy such long tables, then he might actually be able to hear his advisors.

Either way, another record quarter for Nvidia incoming either way these twats want to slice it.

lexluthermiester · Mar 1, 2022

R-T-B said:
Not legally speaking. They just act like they do. But at least in usa, we have every right to defeat those protections on a personal level.

This Is correct.

R-T-B said:
Yes, but present fake gpus are reliant on old chips with unsigned firmware.

And this is one of the many reasons why they started the VBIOS encryption + driver signing scheme. We will not see "fake" cards on modern GPU's..

Upgrayedd · Mar 1, 2022

LHR is bad people. The only place it truly benefits is Nvidia themselves. FE cards are the only FHR cards being produced still and AIB LHR cards still fly off the shelf.

lexluthermiester · Mar 1, 2022

Upgrayedd said:
LHR is bad people. The only place it truly benefits is Nvidia themselves. FE cards are the only FHR cards being produced still and AIB LHR cards still fly off the shelf.

Actually, the LHR move was triple fold. 1, they wanted to motivate the mining community to do something else, and 2, they wanted to limit the amount of wear put on the card being used to mine to prevent damage to the cards, which leads into point 3, this also would limit RMAs and minimize damage to the NVidia brand name as a result.

eidairaman1 · Mar 1, 2022

lexluthermiester said:
Actually, the LHR move was triple fold. 1, they wanted to motivate the mining community to do something else, and 2, they wanted to limit the amount of wear put on the card being used to mine to prevent damage to the cards, which leads into point 3, this also would limit RMAs and minimize damage to the NVidia brand name as a result.

LHR are for "gamers"

TheUn4seen · Mar 1, 2022

Oh come on guys, wait untill I sell my unlocked/FHR 3080 until you publish the LHR bypass.
But honestly, I'm going to paraphrase one of the modern day heroes and say "f*uck you, corporate scum". The fun part is, of course, he said that about nVidia specifically.

seccentral · Mar 1, 2022

dude, they released a part already

Jhart1228 · Mar 3, 2022

Ethical hacking at it's best. In these trying times I thank you for making my shrinking dollar go just that wee bit farther.

cellar door · Mar 9, 2022

R-T-B said:
Did you read the article? They are.

Bios sig keys can't though. They would be a great boon to the likes of nouveau on linux.

Do you understand the premise?

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

Processor	Ryzen 5 5700x
Motherboard	B550 Elite
Cooling	Thermalright Perless Assassin 120 SE
Memory	32GB Fury Beast DDR4 3200Mhz
Video Card(s)	Gigabyte 3060 ti gaming oc pro
Storage	Samsung 970 Evo 1TB, WD SN850x 1TB, plus some random HDDs
Display(s)	LG 27gp850 1440p 165Hz 27''
Case	Lian Li Lancool II performance
Power Supply	MSI 750w
Mouse	G502

System Name	Pioneer
Processor	Ryzen R9 7950X
Motherboard	GIGABYTE Aorus Elite X670 AX
Cooling	Noctua NH-D15 + A whole lotta Sunon and Corsair Maglev blower fans...
Memory	64GB (4x 16GB) G.Skill Flare X5 @ DDR5-6000 CL30
Video Card(s)	XFX RX 7900 XTX Speedster Merc 310
Storage	2x Crucial P5 Plus 2TB PCIe 4.0 NVMe SSDs
Display(s)	55" LG 55" B9 OLED 4K Display
Case	Thermaltake Core X31
Audio Device(s)	TOSLINK->Schiit Modi MB->Asgard 2 DAC Amp->AKG Pro K712 Headphones or HDMI->B9 OLED
Power Supply	FSP Hydro Ti Pro 850W
Mouse	Logitech G305 Lightspeed Wireless
Keyboard	WASD Code v3 with Cherry Green keyswitches + PBT DS keycaps
Software	Gentoo Linux x64

Processor	AMD Threadripper 3970x
Motherboard	Asus Prime TRX40-Pro
Cooling	Custom loop
Memory	GSkil Ripjaws 8x32GB DDR4-3600
Video Card(s)	Nvidia RTX 3090 TI
Display(s)	Alienware AW3420DW
Case	Thermaltake Tower 900
Power Supply	Corsair HX1200

Processor	Ryzen 5 5700x
Motherboard	B550 Elite
Cooling	Thermalright Perless Assassin 120 SE
Memory	32GB Fury Beast DDR4 3200Mhz
Video Card(s)	Gigabyte 3060 ti gaming oc pro
Storage	Samsung 970 Evo 1TB, WD SN850x 1TB, plus some random HDDs
Display(s)	LG 27gp850 1440p 165Hz 27''
Case	Lian Li Lancool II performance
Power Supply	MSI 750w
Mouse	G502

Processor	Ryzen 7 5800x
Motherboard	Msi b450 tomahawk max II
Cooling	Artic liquid freezer II 240mm
Memory	2x8Gb B-die @3800 cl14/ 53ns on aida
Video Card(s)	Evga 3060 ti ftw3
Storage	M.2 Samsung 970 Evo Plus 250gb + 1tb ssd
Case	Corsair 275r airflow
Audio Device(s)	Hyperx
Power Supply	Seasonic core gc 650w 80 plus gold
Mouse	Zowie ec2-a
Keyboard	Trust
Software	Windows 10
Benchmark Scores	Cinebench r20: 631/6232 Cinebench r23: 1628/15901 CPU-Z: 672/6960 SotTR:221FPS

System Name	Compy 386
Processor	7800X3D
Motherboard	Asus
Cooling	Air for now.....
Memory	64 GB DDR5 6400Mhz
Video Card(s)	7900XTX 310 Merc
Storage	Samsung 990 2TB, 2 SP 2TB SSDs and over 10TB spinning
Display(s)	56" Samsung 4K HDR
Audio Device(s)	ATI HDMI
Mouse	Logitech MX518
Keyboard	Razer
Software	A lot.
Benchmark Scores	Its fast. Enough.

System Name	Bongfjaes
Processor	AMD 3700x
Motherboard	Assus Crosshair VII Hero
Cooling	Dark Rock Pro 4
Memory	2x8GB G.Skill FlareX 3200MT/s CL14
Video Card(s)	GTX 970
Storage	Adata SX8200 Pro 1TB + Lots of spinning rust
Display(s)	Viewsonic VX2268wm
Case	Fractal Design R6
Audio Device(s)	Creative SoundBlaster AE-5
Power Supply	Seasonic TTR-1000
Mouse	Pro Intellimouse
Keyboard	SteelKeys 6G

Processor	AMD Ryzen 7 3700X
Motherboard	MSI MAG B550 TOMAHAWK
Cooling	AMD Wraith Prism
Memory	Team Group Dark Pro 8Pack Edition 3600Mhz CL16
Video Card(s)	NVIDIA GeForce RTX 3080 FE
Storage	Kingston A2000 1TB + Seagate HDD workhorse
Display(s)	Samsung 50" QN94A Neo QLED
Case	Antec 1200
Power Supply	Seasonic Focus GX-850
Mouse	Razer Deathadder Chroma
Keyboard	Logitech UltraX
Software	Windows 11

Processor	i7-4790K 4.6GHz @1.29v
Motherboard	ASUS Maximus Hero VII Z97
Cooling	Noctua NH-U14S
Memory	G. Skill Trident X 2x8GB 2133MHz
Video Card(s)	Asus Tuf RTX 3060 V1 FHR (Newegg Shuffle)
Storage	OS 120GB Kingston V300, Samsung 850 Pro 512GB , 3TB Hitachi HDD, 2x5TB Toshiba X300, 500GB M.2 @ x2
Display(s)	Lenovo y27g 1080p 144Hz
Case	Fractal Design Define R4
Audio Device(s)	AKG Q701's w/ O2+ODAC (Sounds a little bright)
Power Supply	EVGA Supernova G2 850w
Mouse	Glorious Model D
Keyboard	Rosewill Full Size. Red Switches. Blue Leds. RK-9100xBRE - Hate this. way to big
Software	Win10
Benchmark Scores	3DMark FireStrike Score : needs updating

System Name	PCGOD
Processor	AMD FX 8350@ 5.0GHz
Motherboard	Asus TUF 990FX Sabertooth R2 2901 Bios
Cooling	Scythe Ashura, 2×BitFenix 230mm Spectre Pro LED (Blue,Green), 2x BitFenix 140mm Spectre Pro LED
Memory	16 GB Gskill Ripjaws X 2133 (2400 OC, 10-10-12-20-20, 1T, 1.65V)
Video Card(s)	AMD Radeon 290 Sapphire Vapor-X
Storage	Samsung 840 Pro 256GB, WD Velociraptor 1TB
Display(s)	NEC Multisync LCD 1700V (Display Port Adapter)
Case	AeroCool Xpredator Evil Blue Edition
Audio Device(s)	Creative Labs Sound Blaster ZxR
Power Supply	Seasonic 1250 XM2 Series (XP3)
Mouse	Roccat Kone XTD
Keyboard	Roccat Ryos MK Pro
Software	Windows 7 Pro 64

Processor	9600k
Motherboard	MSI Z390I Gaming EDGE AC
Cooling	Scythe Mugen 5
Memory	32GB of G.Skill Ripjaws V 3600MHz CL16
Video Card(s)	MSI 3080 Ventus OC
Storage	2x Intel 660p 1TB
Display(s)	Acer CG437KP
Case	Streacom BC1 mini
Audio Device(s)	Topping MX3
Power Supply	Corsair RM750
Mouse	R.A.T. DWS
Keyboard	HAVIT KB487L / AKKO 3098 / Logitech G19
VR HMD	HTC Vive
Benchmark Scores	What's a "benchmark"?

System Name	Ryzen
Processor	Ryzen 7 2700X
Motherboard	Asrock X470 Taichi
Cooling	bequiet! Dark Rock Pro 4
Memory	Gskill 16GB 2x8 3200cl14
Video Card(s)	MSI RTX 2080 GAMING X TRIO
Storage	Adata SP900, kingston SA2000M8/500G, Seagate 1TB, Intel nvme 1Tb

System Name	Rando Trasho
Processor	AMD 5800X PBO
Motherboard	ASUS B550 F-Gaming
Cooling	EVGA 280MM CLC
Memory	32gb 3600mhz Viper Steel 4400 @3600 16-16-16-32-50-blah-blah-blah I can't get it to run faster.
Video Card(s)	ASUS RTX 3070 TUF GAMING OC
Storage	6TB of Rando SSD, 10TB of Spinny Junk
Display(s)	Some Dell Crapper 1440p 144hz Non validated G-sync compatible
Case	The CoolerMaster case with the 200mm rainbowy fans in front.
Audio Device(s)	Creative Labs, dawg. AE-5, possibly an 'X' in there somewhere. Ancient Logitech Z-5500 speakers too.
Power Supply	1000 watt EVGA Platinum Superflower deal.
Mouse	Logitech Mouse that has a Glowy chopped up 'G' lookin thang.
Keyboard	Corsair Clicky keyboard that has a a red light.
VR HMD	Sounds like a disease.
Software	All legally acquired.
Benchmark Scores	9,000.000001 Bungholio Marks.

Hackers Threaten to Release NVIDIA GPU Drivers Code, Firmware, and Hash Rate Limiter Bypass

The Exiled Airman