Grafana Labs Refuses Ransom After Code Theft via GitHub Exploit

Grafana Labs disclosed that attackers exploited a vulnerability in its GitHub Actions workflows to steal its entire codebase. The group demanded ransom; the company refused. Customer data and production systems were not affected. An internal security alert triggered rapid detection, containing the breach to source code alone.