Grafana Labs security update on TanStack NPM supply chain ransomware incident
Grafana Labs reported a targeted cyber attack that compromised their GitHub repositories, leading to a ransom demand. The investigation revealed that while their codebase was downloaded, there was no evidence of compromise to customer systems. Grafana Labs is enhancing security measures and has opted not to pay the ransom, aligning with law enforcement recommendations.
- ▪Grafana Labs confirmed a targeted attack on their GitHub repositories on May 16, 2026.
- ▪The investigation found no evidence that customer production systems or operations were compromised.
- ▪Grafana Labs has decided not to pay the ransom demanded by the attackers.
Opening excerpt (first ~120 words) tap to expand
Grafana Labs security update: Latest on TanStack npm supply chain ransomware incidentJoe McManus•2026-05-19•4 minOn May 16, 2026, Grafana Labs confirmed a targeted attack by a cybercrime group that gained unauthorized access to our GitHub repositories and downloaded our codebase. They then issued a ransom demand under threat of data disclosure. Since we posted our initial findings that day, our investigation has continued, and we are publishing this blog to share more details about our incident response and mitigation. A post-incident report will be published when our investigation is complete. To date, the investigation has found no evidence that customer production systems or operations have been compromised.
…
Excerpt limited to ~120 words for fair-use compliance. The full article is at Grafana Labs.
Discussion
0 commentsMore from Grafana Labs
