Grafana Labs confirmed that hackers breached its GitHub environment using a stolen token and downloaded the company’s codebase, but said no customer data or personal information was accessed. The company refused to pay the ransom demanded by CoinbaseCartel, an extortion group linked to Scattered Lapsus$ Hunters, and said it has invalidated the compromised credentials. #GrafanaLabs #CoinbaseCartel #ScatteredLapsusHunters
Keypoints
- Hackers accessed Grafana Labs’ GitHub environment with a stolen token.
- The attackers downloaded Grafana Labs’ codebase.
- Grafana Labs said no customer data or personal information was exposed.
- The company refused to pay the ransom demanded by CoinbaseCartel.
- CoinbaseCartel is tied to the Scattered Lapsus$ Hunters collective and uses stolen credentials and social engineering.
Read More: https://therecord.media/grafana-refuses-to-pay-ransom-codebase-theft