Grafana 披露遭遇 GitHub 环境安全事件,黑客窃取代码库并实施勒索
深潮 TechFlow 消息,5 月 17 日,开源数据可视化工具 Grafana在 X 平台发文表示,近期发现一名未经授权的攻击者获取了可访问 Grafana Labs GitHub 环境的 Token,并借此下载代码库。经调查确认,此次事件未涉及客户数据或个人信息泄露,也没有发现客户系统或业务运营受到影响,事件发生后已立即启动取证分析,并认为已定位凭证泄露源头,目同时已部署额外安全措施以加强环境防护。
此外,Grafana 披露攻击者曾试图通过勒索方式要求支付赎金以阻止代码库被公开,但公司最终决定拒绝支付赎金,待调查结束后将公布更多事件复盘信息。
Disclaimer: OKX Orbit content is provided for informational purposes only. Learn more
Replies
Related Flash News
ChainCatcher•3m agoThe Verus network is now suspended and is willing to offer a bug bounty if the attacker returns the funds
ChainCatcher•23m agoThe size of RWA-traded open interest on Hyperliquid rose to $2.6 billion, a record high
ChainCatcher•47m agoData: BlackRock deposited 2,221 BTC and 26,572 ETH to Coinbase
Odaily•50m agoThe 25-year-old AI stock god disclosed his Q1 holdings: heavy positions in AI power, computing power and mining company stocks
Odaily•1h agoBlackRock increased its holdings of 3.14 million Strategy shares, bringing its total holdings to $3 billion
ChainCatcher•1h agoBernstein: The yield compromise provisions of the CLARITY Act will strengthen Circle's competitive advantage
ChainCatcher•1h agoGoldman Sachs liquidated its XRP and Solana ETF holdings in Q1 and still holds more than $700 million in Bitcoin ETFs
币界网•2h agoZEC's largest short position: SP500 long orders reduced their holdings of 210.97 ZEC, making a profit of about $1.71 million
Odaily•3h agoKalshi and Polymarket still allow local users to register for trading after the Indian ban
Odaily•3h agoThe revised plan proposed by Iran has been forwarded to the United States