Grafana Labs Confirms GitHub Breach Linked to TanStack npm Attack

Grafana Labs has reported a breach of its GitHub environment, revealing source code and internal information but confirming no compromise of customer production systems.

Grafana Labs has reported a breach of its GitHub environment, revealing source code and internal information but confirming no compromise of customer production systems.

Instructure's assurances regarding the deletion of stolen student data from the recent Canvas breach are met with skepticism from security experts.

Instructure has acknowledged two unauthorized intrusions affecting its Canvas platform, with data potentially belonging to over 275 million users at risk.

A recent phishing campaign has led to the compromise of approximately 30,000 Facebook accounts, utilizing Google AppSheet to distribute malicious emails.

Itron and Medtronic have disclosed recent cyber incidents affecting their systems, with varying impacts and responses.

ADT has acknowledged a cyber intrusion linked to the ShinyHunters group, which claims to have stolen over 10 million records, raising questions about data security and corporate response.

Vercel has disclosed a security breach that allowed unauthorized access to its internal systems, stemming from a compromise of the Context.ai tool used by its employees.

A corporate client's data breach was traced back to an unsecured internet-connected coffee machine, highlighting vulnerabilities in connected devices.

This week's cybersecurity landscape reveals critical vulnerabilities under active exploitation, alongside notable incidents involving high-profile targets and evolving malware campaigns.

AFC Ajax has confirmed a data breach that allowed unauthorized access to its internal systems, exposing personal data and enabling ticket manipulation.