Skip to main content
  1. Home
  2. Computing

GPUs could become Trojan horses for future cyberattacks

By
NVIDIA CEO Jensen Huang at GTC
Nvidia

The graphics card inside your computer is a powerful tool for gaming and creative work, but it can also potentially serve as a Trojan horse for malware. Cybercriminals are finding ways to exploit graphics cards and their VRAM to inject malicious code into your system. The approach is claimed to have worked during a proof-of-concept hack on both discrete and integrated GPUs from AMD, Intel, and Nvidia.

Because antivirus software today cannot scan the graphics card’s own video RAM, known as VRAM, hackers are now targeting GPUs to carry out their dirty work. On the other hand, conventional methods used today that target the system’s main memory would trigger the antivirus software.

Recommended Videos

According to Bleeping Computer, a brief description of the hack was posted on a hacker forum, where one seller was trying to sell his proof-of-concept method to exploit the VRAM on GPUs. The seller stated that the method worked on Intel’s integrated UHD 620 and 630 graphics, as well as discrete solutions including the AMD Radeon RX 5700 and Nvidia GeForce GTX 1650. It’s unclear if the attack would also work on other GPUs, like the recent Radeon RX 6000 series from AMD and the Geforce RTX 3000 series from Nvidia, both of which have seen high demand and short supply.

Related: 
Best new movies to stream on Netflix, Hulu, Prime Video, HBO Max, and more

The listing to sell the proof of concept was posted on August 8, and the method of exploit was sold on August 25, though details about the transactions were not revealed. It’s unknown who purchased the hack or how much was paid.

Though specifics about the exploit that was sold to other hackers are not known, cybersecurity researchers at VX-Underground stated that the method allowed the code to be run by the GPU and in the VRAM rather than by the CPU. The researchers said that they will be demonstrating the method of exploit soon.

While targeting the GPU for cyberattacks may be different from traditional hacks today, the method isn’t entirely novel. This latest exploit follows a similar proof of concept from six years ago known as JellyFish.

With the JellyFish proof of concept, researchers exploited the graphics card with a GPU-based keylogger. The seller of this latest GPU-based hack denied similarities behind his method and JellyFish, Bleeping Computer stated.

Given that your GPU could potentially be exploited by a malicious actor in the future to hide and execute malware, PC owners, gamers, and creators should stay vigilant of suspicious emails, links, files, and downloads. This is especially pertinent given that malware that sits in VRAM can be undetectable by antivirus software.

Chuong Nguyen
Chuong Nguyen
Former Computing Writer
Silicon Valley-based technology reporter and Giants baseball fan who splits his time between Northern California and Southern…
Topics

Editors’ Recommendations

Some RTX 5090 GPUs are missing out on a bit of performance
RTX 5090 vs 4090.

As if the launch of Nvidia's RTX 50-series wasn't bumpy enough, it now turns out that some of these GPUs are missing out on a bit of performance, and it's unclear how many cards are affected. Although they still are the best graphics cards right now, some RTX 5090s may not have their full specs, and it's affecting their performance.

This was discovered by TechPowerUp, and the affected GPU is a Zotac GeForce RTX 5090 solid, but apparently, cards from other manufacturers might also be affected. Let's dig into what exactly is going on.

Read more
Nvidia’s RTX 5070 Ti could displace the RTX 5080 — but I’m worried about it
Two RTX 4070 Ti Super graphics cards sitting next to each other.

Nvidia's RTX 5070 Ti is mere days away. Set to launch on February 20, the GPU marks the beginning of Nvidia's mainstream RTX 50-series. With similar specs to the RTX 5080, the RTX 5070 Ti has every chance to rank high among the best graphics cards -- but it's also going to face a number of obstacles that might impact its success.

Thanks to some leaked benchmarks, we now have a better idea of how the card might perform, and that rough ballpark is really a bit of a mixed bag. Here's why I think the RTX 5070 Ti might have an uphill climb when it first hits the shelves, but also why it might completely displace the RTX 5080.
Promising benchmarks -- well, kind of

Read more
Market analyst confirms my worst fears about Nvidia GPUs
Two RTX 4060 graphics cards stacked on top of each other.

Hello again, GPU shortage -- we really didn't miss you. Although the RTX 50-series is technically here, the reality isn't that simple. The RTX 5090 and the RTX 5080 launched in January in a very limited capacity, and now, it looks like the other graphics cards in the lineup may have to pay the price. According to Ming-Chi Kuo, a well-known market analyst, the release dates for Nvidia's best graphics cards for gamers are being pushed back. Worse yet, the GPUs will likely sell out the moment they hit the shelves.

Kuo reports that chip supply constraints are causing shortages, but this is no news to us. The RTX 5090 sold out almost as soon as it hit the shelves, and some retailers report that we might have to wait until June for the GPUs to come back in stock. Meanwhile, scalpers are having a field day on eBay, selling the cards at a massive markup -- or even selling photos of the GPU at $2,000.

Read more