News list for "grafana"
Grafana's official X account issued a statement saying that its current investigation results show no evidence of code modification, unauthorized access to production systems, exposure of customer data, or access to personal information. Previously, Slow Mist detected that the open-source data lake visualization tool Grafana was suspected of being hacked, and the attacker may have implanted malicious code.
Grafana 官方 X 账号发文表示,目前其调查结果显示,未发现任何代码被修改、生产系统遭受未授权访问、客户数据暴露或个人信息被访问的证据。 此前消息,慢雾监测到开源数据可视化工具 Grafana 疑似遭黑客攻击,攻击者或已植入恶意代码。
SlowMist Technology Chief Information Security Officer 23pds posted on the X platform that the open-source data lake visualization tool Grafana was recently suspected to have been attacked. The attackers used Gato-X to steal confidential signatures and attacked multiple codebases with app tokens. This workflow has a potentially related application private key, and the suspected attacker used a well-crafted branch name to inject JavaScript code and steal confidential information.
慢雾科技首席信息安全官23pds在X平台发文称,开源数据可视化工具Grafana最近疑似被攻击,攻击者使用Gato-X窃取机密的签名,用App令牌对多个代码库进行了攻击。这个工作流程有一个可能相关的应用程序私钥,疑似攻击者使用精心设计的分支名称,注入JavaScript代码并窃取机密信息。
