\n<\/p>\n
Grafana Labs, the maker of its eponymous popular open source web visualization software, confirmed it had been hacked but that it refused to pay the hackers who had threatened to release the company\u2019s codebase.<\/p>\n
In a series of posts<\/a> on social media, the lab said its investigation found that the hackers had abused a stolen token credential that allowed access to the company\u2019s GitLab environment, which it uses for code development. The token did not provide access to customer records or financial data, but allowed the hackers to obtain the company\u2019s repositories of source code. The company has since invalidated the token and added additional security measures to prevent a repeat incident.<\/p>\n \u201cThe attacker attempted to blackmail us, demanding payment to prevent the release of our codebase,\u201d the company said.<\/p>\n Grafana\u2019s code is open source and public, meaning anyone can download the software and edit its code before running it on their own machines. It\u2019s unclear if the hackers stole any proprietary code or information. A spokesperson for the company did not immediately return a request for comment.<\/p>\n The incident contrasts with the recent hack at education tech giant Instructure, which last week \u201creached an agreement\u201d to pay the hackers<\/a> who had compromised its network twice in recent weeks. The hackers had demanded an unspecified ransom, threatening to release stolen data about staff and students who use its software following a massive data breach and a subsequent website defacement<\/a>.<\/p>\n While in Grafana\u2019s case, no customer data was taken, the company cited the FBI\u2019s long-standing advice urging victims not to pay hackers, as cooperating with hackers does not guarantee that they would return stolen data or refrain from publishing it later. Critics also say paying cybercriminals helps to fund future cyberattacks.<\/p>\n Grafana said its investigation was ongoing and will share its findings once its probe concludes.<\/p>\n<\/div>\n When you purchase through links in our articles, we may earn a small commission<\/a>. This doesn\u2019t affect our editorial independence.<\/em><\/p>\n