Vercel, the popular company that provides a platform to help developers build and run websites and web apps, confirmed that attackers gained unauthorized access to some of its internal systems.
The company has notified law enforcement, brought in external incident response experts, and says it has directly contacted the limited number of customers it has identified as affected so far. The investigation is still ongoing.
The breach didn’t come from a direct attack on Vercel itself. It originated through a third-party AI tool that had a Google Workspace OAuth app, and that app was separately compromised in what appears to be a wider attack potentially hitting hundreds of organizations using the same tool.
Vercel hasn’t named the tool.
The main concern for Vercel customers is environment variables. These are configuration values your app uses at runtime, which includes things like API keys, database credentials, and signing tokens.
Vercel says that environment variables marked as “sensitive” are stored in a way that prevents them from being read back, and there’s currently no evidence those were accessed.
The problem is anything that wasn’t marked sensitive. Those values should be treated as compromised and rotated immediately.
On top of the confirmed breach, the hacking group ShinyHunters is claiming they carried out the attack and are offering what they describe as access keys, source code, and database contents from Vercel, asking $2 million, with an initial payment of $500,000 in Bitcoin.
ShinyHunters is a well-known group with a history of large data thefts, but their claims here are unverified. There’s no independent confirmation that they have what they say they do, and it’s not even certain they were behind the data breach at all.
What makes the claim worth paying attention to is the scale ShinyHunters is alluding to. Vercel hosts Next.js, which reportedly sees around 6 million weekly downloads.
The group suggests that access to Vercel’s internals could enable a supply chain attack, essentially, tampering with packages that millions of developers download and run in their own software. That’s a serious hypothetical, but for now it remains hypothetical.
Vercel’s services are currently operational. If you use Vercel, the immediate action is to audit your environment variables, rotate anything that holds a secret and wasn’t marked sensitive, and start using the sensitive variable feature going forward.
