Skip to main content

GPUs could become Trojan horses for future cyberattacks

NVIDIA CEO Jensen Huang at GTC
Nvidia

The graphics card inside your computer is a powerful tool for gaming and creative work, but it can also potentially serve as a Trojan horse for malware. Cybercriminals are finding ways to exploit graphics cards and their VRAM to inject malicious code into your system. The approach is claimed to have worked during a proof-of-concept hack on both discrete and integrated GPUs from AMD, Intel, and Nvidia.

Because antivirus software today cannot scan the graphics card’s own video RAM, known as VRAM, hackers are now targeting GPUs to carry out their dirty work. On the other hand, conventional methods used today that target the system’s main memory would trigger the antivirus software.

According to Bleeping Computer, a brief description of the hack was posted on a hacker forum, where one seller was trying to sell his proof-of-concept method to exploit the VRAM on GPUs. The seller stated that the method worked on Intel’s integrated UHD 620 and 630 graphics, as well as discrete solutions including the AMD Radeon RX 5700 and Nvidia GeForce GTX 1650. It’s unclear if the attack would also work on other GPUs, like the recent Radeon RX 6000 series from AMD and the Geforce RTX 3000 series from Nvidia, both of which have seen high demand and short supply.

Get your weekly teardown of the tech behind PC gaming
Check your inbox!

The listing to sell the proof of concept was posted on August 8, and the method of exploit was sold on August 25, though details about the transactions were not revealed. It’s unknown who purchased the hack or how much was paid.

Though specifics about the exploit that was sold to other hackers are not known, cybersecurity researchers at VX-Underground stated that the method allowed the code to be run by the GPU and in the VRAM rather than by the CPU. The researchers said that they will be demonstrating the method of exploit soon.

While targeting the GPU for cyberattacks may be different from traditional hacks today, the method isn’t entirely novel. This latest exploit follows a similar proof of concept from six years ago known as JellyFish.

With the JellyFish proof of concept, researchers exploited the graphics card with a GPU-based keylogger. The seller of this latest GPU-based hack denied similarities behind his method and JellyFish, Bleeping Computer stated.

Given that your GPU could potentially be exploited by a malicious actor in the future to hide and execute malware, PC owners, gamers, and creators should stay vigilant of suspicious emails, links, files, and downloads. This is especially pertinent given that malware that sits in VRAM can be undetectable by antivirus software.

Editors' Recommendations

Chuong Nguyen
Silicon Valley-based technology reporter and Giants baseball fan who splits his time between Northern California and Southern…
GPU prices are back on the rise again
RTX 4060 Ti sitting next to the RTX 4070.

We haven't had to worry about the prices of some of the best graphics cards for quite some time. With most GPUs sold around their recommended retail price, there are plenty of options for PC builders in need of a new graphics card. However, a new report indicates that we might see an increase in GPU prices, especially on the cards made by Nvidia's add-in board partners (AIBs). Is it time to start worrying about another GPU shortage? Not quite, but it might be better to shop now before it gets worse.

The grim news comes from IT Home, a Chinese tech publication that cites anonymous "industry sources" as it predicts that Nvidia's AIBs are about to raise their prices by up to 10% on average -- and this won't be limited to high-end GPUs along the lines of the RTX 4090. In fact, IT Home reports that the RTX 4070 Super has already received a price increase of about 100 yuan, which equals roughly $14 at the time of this writing. This is a subtle price increase given that the GPU costs $550 to $600, but according to the report, it might just be the beginning.

Read more
The sad reality of AMD’s next-gen GPUs comes into view
The AMD RX 7900 graphics card on a pink background.

For months now, various leakers agreed on one thing -- AMD is tapping out of the high-end GPU race in this generation, leaving Nvidia to focus on making the best graphics cards with no competitor. Today's new finding may confirm that theory, as the first RDNA 4 GPU to make an official appearance is one that has been speculated about for months: Navi48.

Following the typical naming convention for AMD, the flagship in the RDNA 4 generation should have been called Navi41 -- and it very well might have been, but according to various sources, that GPU will not be making an appearance in this generation. Hence, the flagship is now said to be the Navi48, and the latest finding shared by Kepler_L2 on X tells us that might indeed be the case.

Read more
Everything you need to know about buying a GPU in 2024
RTX 4090.

The graphics card, also known as the GPU, is arguably one of the most exciting components in any PC build. Alongside the processor, your graphics card often has the greatest impact on the overall performance of your PC. That makes it a pretty high-stakes purchase, especially if you consider that GPUs can get pretty expensive.

The GPU market has a lot to offer, and that's regardless of your needs and your budget. Whether you're aiming for something super cheap to support some light browsing or a behemoth to handle the most GPU-intensive games, you have lots of options. In this guide, we'll show you what to look out for so that you can pick the best GPU that fits your budget and needs.
Nvidia, AMD, or Intel?
Consumer graphics cards are generally split into two categories -- integrated and discrete graphics. Since you're here, you're most likely looking for a discrete (or dedicated) GPU, and that's what we're going to focus on in this article.

Read more