Grafana breach caused by missed token rotation after TanStack attack
Source: Bleepingcomputer
Published:
<p>The Grafana data breach was caused by a single GitHub workflow token that slipped through the rotation process following the TanStack npm supply-chain attack last week.</p> <p>In the ongoing Shai-Hulud malware campaign attributed to TeamPCP hackers, dozens of TanStack packages infected with crede