# Attackers accessed, downloaded code from Grafana Labs' GitHub _Friday, June 26, 2026 at 12:56 AM EDT · Cybersecurity · Latest · Tier 2 — Notable_ ![Attackers accessed, downloaded code from Grafana Labs' GitHub — Primary](https://img.helpnetsecurity.com/wp-content/uploads/2026/05/18081431/grafana-1500.webp) A threat actor accessed Grafana Labs GitHub environment and downloaded the companys codebase. The open source observability and data visualization firm announced the incident on Sunday. The breach is significant given the firms widespread use across enterprise engineering and DevOps teams worldwide. Grafana Labs is best known for its open source dashboard and visualization platform. It also offers tools for log aggregation, continuous profiling, distributed tracing, and a hosted option. Much of its software is open source. The company also maintains proprietary portions of its codebase. The company stated that no customer data or personal information was accessed during the incident. It found no evidence of impact to customer systems or operations. The company immediately initiated forensic analysis. It believes it has identified the source of the credential leak. The compromised credentials have been invalidated and additional security measures have been implemented. Attackers have threatened to leak the downloaded codebase unless the company pays a ransom. Grafana Labs has said it will not pay the ransom. The decision aligns with the position that paying does not guarantee data recovery and only incentivizes further illegal activity. The company did not identify the attackers by name. A cyber extortion outfit known as Coinbase Cartel claimed the attack. The group has a history of targeting technology companies and publishing stolen code. Grafana Labs has promised to share additional information about the incident once the investigation is complete. An update traced the compromise back to the TanStack npm supply chain attack. ## Sources - [Help Net Security](https://www.helpnetsecurity.com/2026/05/18/attackers-accessed-downloaded-code-from-grafana-labs-github/) --- Canonical: https://techandbusiness.org/newswire/CeoAu2iFmluHtXciHyncTo Retrieved: 2026-06-26T09:25:15.164Z Publisher: Tech & Business (techandbusiness.org)