Grafana Says It Rejected Ransom Demand After Source Code Theft

Grafana Labs disclosed that a threat actor obtained a compromised GitHub token, accessed and downloaded portions of the company's source code, and later attempted to extort Grafana by threatening to release the stolen code. Grafana says there is no evidence of customer data or customer-system impact, the credentials were revoked, additional protections added, and a forensic investigation is underway.