Mastodawn

Grafana says stolen GitHub token let hackers steal codebase
#Grafana #CoinbaseCartel
https://www.bleepingcomputer.com/news/security/grafana-says-stolen-github-token-let-hackers-steal-codebase/

Grafana says stolen GitHub token let hackers steal codebase

Grafana Labs disclosed that hackers have downloaded its source code after breaching its GitHub environment using a stolen access token.

BleepingComputer

CyberVeille.ch 6d ago

📢 Grafana : vol de token GitHub, téléchargement du code source et tentative d'extorsion par CoinbaseCartel
📝 ## 🔍 Contexte

Source : The Hacker News, publié le 17 mai 2026.
📖 cyberveille : https://cyberveille.ch/posts/2026-05-17-grafana-vol-de-token-github-telechargement-du-code-source-et-tentative-d-extorsion-par-coinbasecartel/
🌐 source : https://thehackernews.com/2026/05/grafana-github-token-breach-led-to.html
#CoinbaseCartel #LAPSUS_ #Cyberveille

Grafana : vol de token GitHub, téléchargement du code source et tentative d'extorsion par CoinbaseCartel

🔍 Contexte Source : The Hacker News, publié le 17 mai 2026. Grafana, éditeur de la plateforme d’observabilité Grafana Cloud, a divulgué publiquement une violation de sécurité impliquant le vol d’un token d’accès à son environnement GitHub. 🎯 Déroulement de l’incident Un token GitHub compromis a permis à un acteur non autorisé d’accéder à l’environnement GitHub de Grafana et de télécharger son code source. Grafana a découvert l’activité « récemment » sans préciser la date exacte ni la durée d’exposition. L’entreprise a immédiatement lancé une analyse forensique, invalidé les identifiants compromis et renforcé ses mesures de sécurité.

CyberVeille

RedPacket Security May 15

[COINBASECARTEL] - Ransomware Victim: Zywave - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-zywave/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Zywave - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security May 15

[COINBASECARTEL] - Ransomware Victim: Grafana - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-grafana/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Grafana - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security May 13

[COINBASECARTEL] - Ransomware Victim: Buenos Aires Software - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-buenos-aires-software/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Buenos Aires Software - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security May 11

[COINBASECARTEL] - Ransomware Victim: Tab Service - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-tab-service/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Tab Service - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security May 11

[COINBASECARTEL] - Ransomware Victim: Jozef Stefan Institute (IJS) - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-jozef-stefan-institute-ijs/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Jozef Stefan Institute (IJS) - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security May 11

[COINBASECARTEL] - Ransomware Victim: Cass information Systems - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-cass-information-systems/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Cass information Systems - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security May 11

[COINBASECARTEL] - Ransomware Victim: Alpinion - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-alpinion/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Alpinion - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security

RedPacket Security Apr 23

[COINBASECARTEL] - Ransomware Victim: Sea Telecom Br - https://www.redpacketsecurity.com/coinbasecartel-ransomware-victim-sea-telecom-br/

#coinbasecartel #dark_web #data_breach #OSINT #ransomware #threatintel #tor

[COINBASECARTEL] - Ransomware Victim: Sea Telecom Br - RedPacket Security

NOTE: No files or stolen information are exfiltrated, downloaded, taken, hosted, seen, reposted, or disclosed by RedPacket Security. Any legal issues relating

RedPacket Security