Grafana said an unauthorized party used a stolen token to access its GitHub environment and download its codebase, but no customer data, personal information, or customer systems were impacted. The company invalidated the compromised credentials, strengthened defenses, and refused extortion demands, while reports suggest the activity may be tied to CoinbaseCartel. #Grafana #GitHub #CoinbaseCartel #FBI
Keypoints
- Grafana disclosed that a stolen token enabled access to its GitHub environment.
- The attacker downloaded the companyβs codebase but did not access customer data.
- Grafana launched a forensic investigation and invalidated the compromised credentials.
- The threat actor tried to extort Grafana, but the company refused to pay.
- Reports link the incident to CoinbaseCartel, a data extortion group.
Read More: https://thehackernews.com/2026/05/grafana-github-token-breach-led-to.html