GeForce NOW regional partner breach exposes Armenian user data via third-party compromise
Summary
Hide ▲
Show ▼
NVIDIA confirmed a data breach affecting GeForce NOW users in Armenia after a regional partner’s infrastructure was compromised between March 20–26, 2026. The incident is limited to GFN.am, the Armenian operator of GeForce NOW, which manages service operations across multiple countries. NVIDIA stated its own infrastructure remained unaffected. A threat actor using the ShinyHunters handle claimed responsibility, alleging theft of millions of records including names, emails, usernames, dates of birth, membership status, and 2FA/TOTP details, and offered the data for $100,000. The actor later removed the forum post, and the data’s current status is unknown.
Timeline
-
08.05.2026 19:18 1 articles · 9h ago
GeForce NOW Armenian user data exposed in third-party partner breach between March 20–26
A regional partner operating GFN.am, the Armenian GeForce NOW operator, suffered a cybersecurity incident that exposed user data between March 20 and March 26, 2026. NVIDIA confirmed no impact on its own infrastructure and stated impacted users will be notified via GFN.am. Exposed information includes names, emails, usernames, dates of birth, membership status, and 2FA/TOTP status, but not passwords.
Show sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18
Information Snippets
-
NVIDIA confirmed a data breach limited to GeForce NOW users in Armenia caused by a compromise of a regional partner’s infrastructure operated by GFN.am.
First reported: 08.05.2026 19:181 source, 1 articleShow sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18
-
The incident occurred between March 20 and March 26, 2026, according to GFN.am’s statement.
First reported: 08.05.2026 19:181 source, 1 articleShow sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18
-
Exposed data includes full names (for Google account users), email addresses, phone numbers (if registered via mobile), dates of birth, usernames, and membership status; passwords were not exposed.
First reported: 08.05.2026 19:181 source, 1 articleShow sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18
-
GFN.am clarified that users who registered after March 9, 2026 are not impacted by the incident.
First reported: 08.05.2026 19:181 source, 1 articleShow sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18
-
NVIDIA stated its own network and services were not affected by the breach.
First reported: 08.05.2026 19:181 source, 1 articleShow sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18
-
The threat actor ShinyHunters claimed to have stolen the data and offered it for $100,000 in cryptocurrency; the forum post was later removed.
First reported: 08.05.2026 19:181 source, 1 articleShow sources
- NVIDIA confirms GeForce NOW data breach affecting Armenian users — www.bleepingcomputer.com — 08.05.2026 19:18