Vercel confirms breach as hackers claim to be selling stolen data
BleepingComputer • • business
Key Points:
- Vercel, a cloud development platform known for Next.js and developer infrastructure, disclosed a security breach affecting a limited subset of customers, involving unauthorized access to internal systems.
- The company confirmed it is investigating the incident with expert assistance, has notified law enforcement, and stated that its services remain operational while working with impacted customers.
- A threat actor claiming to be from the "ShinyHunters" group posted on a hacking forum offering stolen Vercel data for sale, including access keys, source code, API keys, and employee information, though the authenticity has not been independently verified.
- The attacker also claimed to have demanded a $2 million ransom and stated they were in contact with Vercel regarding the incident, but Vercel has not confirmed any ransom negotiations.
- Vercel advised customers to review environment variables, use sensitive environment variable features, and rotate secrets as precautionary measures to protect their data.
 { path { fill: %23EEEFE9 } })