PCMag editors select and review products independently. If you buy through affiliate links, we may earn commissions, which help support our testing.

PCMag UK

Hackers Try to Sell Mining Bypass for Nvidia GPUs for $1 Million

The hacking group behind the Nvidia breach is likely hoping cryptocurrency miners will pay up, even though it's a risky proposition that doesn't make financial sense.

Michael Kan
 & Michael Kan Principal Reporter

Our team tests, rates, and reviews more than 1,500 products each year to help you make better buying decisions and get more from technology.

Our Expert
LOOK INSIDE PC LABS HOW WE TEST
65 EXPERTS
43 YEARS
41,500+ REVIEWS

It's never a good (or ethical) idea to buy stolen data from hackers. For one, the information itself could be fake or booby-trapped with malware

Nevertheless, the cybercriminals behind the Nvidia breach are still hoping to sell off some of the data they stole from the company. On Wednesday, the group offered a software tool to unlock the Ethereum mining limitation on Nvidia’s RTX 3000 graphics cards for $1 million.

The hacking group, known as LAPSUS$, claims the tool can bypass Nvidia’s Lite Hash Rate limiter without “flashing” or updating the firmware on an RTX 3000 GPU. “Without flashing = big money for any miner developer,” the group said earlier this week, when it first dangled the Ethereum mining bypass in a public chat room. 

Postings from the hacking group.
Postings from the hacking group

The bypass means a cryptocurrency miner could raise the Ethereum mining rate on an RTX 3000 product from the default 50% to 100%. Last year, Nvidia began installing the limitation across most RTX 3000 GPUs in an effort to stop miners from buying them up. 

However, it’s doubtful anyone will pay $1 million for this. The mining community has already come up with ways to raise the mining limit on affected Nvidia GPUs from 50% to 70%. At the same time, Ethereum is preparing to phase out GPU-based mining, probably later this year. Hence, it makes more economic sense for a user to mine under the current status quo, rather than hand over $1 million for additional profits that may never be realized. 

Recommended by Our Editors

China Just Made a GPU That's Powerful Enough for Gaming, But There's a Catch
China Just Made a GPU That's Powerful Enough for Gaming, But There's a Catch
Everything Old Is New Again. Leak Tips Return of Nvidia RTX 3060 12GB in July
Everything Old Is New Again. Leak Tips Return of Nvidia RTX 3060 12GB in July
The Best Graphics Cards for 2026
The Best Graphics Cards for 2026

LAPSUS$ has also not demoed the Ethereum mining bypass, so it’s unclear if the software tool even works. Still, the group is probably willing to negotiate the $1 million price down. 

The larger issue is that LAPSUS$ is threatening to release more confidential information stolen from Nvidia after already leaking a 19GB archive to the public. On Tuesday, the hacking group demanded Nvidia open source its GPU drivers to all users or else it’ll release another 250GB folder containing data on the company’s hardware. 

According to LAPSUS$, the 250GB folder also allegedly contains more information on how tech-savvy users can bypass the Ethereum mining limit on Nvidia GPUs if they know enough about computer coding. “You will be able to make your own firmware. But we won’t be responsible for any problems,” the group said. 

Nvidia didn’t immediately respond to a request for comment. But on Monday night, the company said it's been working to analyze what information LAPSUS$ has been leaking on the internet. "We do not anticipate any disruption to our business or our ability to serve our customers as a result of the incident," the company added. 

On Monday, LAPSUS$ also told PCMag it had yet to hear back from Nvidia. The hacking group is demanding the company pay a ransom in cryptocurrency to keep the stolen information secret, though it hasn't revealed how much it has requested.

About Our Expert

Michael Kan

Michael Kan

Principal Reporter

My Experience

I've been a journalist for over 15 years. I got my start as a schools and cities reporter in Kansas City and joined PCMag in 2017, where I cover satellite internet services, cybersecurity, PC hardware, and more. I'm currently based in San Francisco, but previously spent over five years in China, covering the country's technology sector.

Since 2020, I've covered the launch and explosive growth of SpaceX's Starlink satellite internet service, writing 600+ stories on availability and feature launches, but also the regulatory battles over the expansion of satellite constellations, fights with rival providers like AST SpaceMobile and Amazon, and the effort to expand into satellite-based mobile service. I've combed through FCC filings for the latest news and driven to remote corners of California to test Starlink's cellular service.

I also cover cyber threats, from ransomware gangs to the emergence of AI-based malware. In 2024 and 2025, the FTC forced Avast to pay consumers $16.5 million for secretly harvesting and selling their personal information to third-party clients, as revealed in my joint investigation with Motherboard.

I also cover the PC graphics card market. Pandemic-era shortages led me to camp out in front of a Best Buy to get an RTX 3000. I'm now following how the AI-driven memory shortage is impacting the entire consumer electronics market. I'm always eager to learn more, so please jump in the comments with feedback and send me tips.

The Best Tech I've Had:

  • My first video game console: a Nintendo Famicom
  • I loved my Sega Saturn despite PlayStation's popularity.
  • The iPod Video I received as a gift in college
  • Xbox 360 FTW
  • The Galaxy Nexus was the first smartphone I was proud to own.
  • The PC desktop I built in 2013, which still works to this day.

Read the latest from Michael Kan

Read full bio