Vercel Confirms Breach After Threat Actor Offers Alleged Stolen Data for Sale
Vercel confirmed a security incident involving unauthorized access to certain internal systems after a threat actor using the name ShinyHunters claimed to be selling allegedly stolen company data on a hacking forum. The company said only a limited subset of customers was affected, its services remain operational, and it has engaged incident response experts, notified law enforcement, and is working directly with impacted customers.
The actor claimed the stolen data included access keys, source code, database data, internal deployment access, and API keys, and shared a text file with 580 employee-related records along with a screenshot purportedly showing an internal Vercel Enterprise dashboard. Vercel advised customers to review environment variables and rotate secrets if necessary, while the authenticity of the leaked materials and the attribution to ShinyHunters remained unverified; the actor also claimed on Telegram that a $2 million ransom demand had been discussed with the company.
How this story unfolded
10 events from the earliest known activity through the most recent confirmed update.
Context.ai employee infected with Lumma Stealer in February
Vercel said the intrusion chain began when a Context.ai employee was infected with Lumma Stealer malware in February, reportedly via malware disguised as Roblox cheats. The infection allegedly led to compromise of Context.ai’s AWS environment and OAuth tokens, including one tied to a Vercel employee’s Google Workspace account.
Context AI confirms March breach of Office Suite OAuth app
Context AI said its Context AI Office Suite application was breached in March and that attackers likely compromised OAuth tokens for some consumer users. The disclosure provides upstream context for how the Vercel employee account compromise may have occurred.
Threat actor advertises alleged Vercel data for sale
A threat actor using the name "ShinyHunters" posted on a hacking forum claiming to sell allegedly stolen Vercel data, including access keys, source code, database data, internal deployment access, and API keys. The actor also shared a text file with 580 employee-related records and a screenshot purportedly showing an internal Vercel Enterprise dashboard, though the materials were not independently verified.
Attacker claims $2 million ransom talks with Vercel
The same threat actor claimed on Telegram that they had discussed a $2 million ransom demand with Vercel. Attribution remained uncertain because actors linked to recent ShinyHunters-associated attacks reportedly denied involvement in this incident.
Vercel confirms security incident affecting internal systems
Vercel disclosed unauthorized access to certain internal systems and said only a limited subset of customers was affected while its services remained operational. The company said it was investigating the breach, engaged incident response experts, notified law enforcement, and advised impacted customers to review environment variables and rotate secrets if necessary.
Vercel links breach to compromised OAuth app and Context.ai account access
Vercel said the intrusion began when attackers abused a malicious or compromised Google Workspace OAuth app tied to a Vercel employee's use of third-party AI tool Context.ai, allowing access to the employee's Google Workspace account and pivoting into select environments. The company also published the OAuth app identifier as an indicator of compromise and said Mandiant was assisting the investigation.
Vercel says npm packages and software supply chain were not compromised
Vercel stated it found no evidence that npm packages published by the company were affected by the breach and said its software supply chain remains safe. The statement narrowed the apparent impact of the incident beyond previously disclosed internal-system access.
Vercel says expanded probe found more compromised customer accounts
Vercel disclosed that its ongoing investigation found an additional set of customer accounts compromised after attackers accessed internal systems in the Context.ai-linked breach. The company also identified a small number of separate customer-account compromises that predated and were independent of the main incident, possibly involving social engineering or malware.
Vercel says attackers accessed unencrypted customer credentials
Vercel said attackers reached internal systems that stored unencrypted customer credentials during the broader intrusion investigation. The disclosure marked a significant impact escalation beyond previously reported customer-account compromises and internal-system access.
Vercel says attackers stole and decrypted customer environment variables
Vercel disclosed that attackers traversed internal systems and stole and decrypted customer data, including stored environment variables, creating downstream risk to affected customers' production environments. The company said this finding came from continued analysis of nearly a petabyte of logs during its ongoing investigation.
Related entities
Vulnerabilities, threat actors, malware, products, organizations, and breaches Mallory has linked to this story.
Sources
32 references tracked. Mallory keeps watching after this page renders.
Hunting the Infostealer-to-SaaS Pipeline: When Third-Party Trust Becomes Lateral Movement
dispatch.thorcollective.com
Open sourceFurther Vercel customer data compromise confirmed | brief | SC Media
scworld.com
Open sourceVercel April 2026 security incident | Vercel Knowledge Base
vercel.com
Open sourceVercel attack fallout expands to more customers and third-party systems | CyberScoop
cyberscoop.com
Open sourceSecurity Is Optional: How to Respond to a Security Breach
inc.com
Open sourceVercel Confirms Security Breach - Set of Customer Account Compromised
cybersecuritynews.com
Open sourceVercel Finds More Compromised Accounts in Context.ai-Linked Breach
thehackernews.com
Open sourceVercel says some of its customers' data was stolen prior to its recent hack | TechCrunch
techcrunch.com
Open sourceVercel Says Some of its Customers’ Data Was Stolen Prior to Recent Hack
vulnu.com
Open sourceEverything we know about the Vercel data breach so far | IT Pro
itpro.com
Open sourceAI-pwned: Vercel breach traced to stolen employee creds • The Register
go.theregister.com
Open sourceVercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third‑Party Tool - DataBreaches.Net
databreaches.net
Open sourceVercel Breach Analysis: How an OAuth Token Became an Identity Attack Path | SpecterOps
specterops.io
Open sourceCloud platform Vercel says company breached through third-party AI tool | The Record from Recorded Future News
therecord.media
Open sourceOAuth hijacked: How a third-party breach hit Vercel | Expel
expel.com
Open sourceVercel's security breach started with malware disguised as Roblox cheats | CyberScoop
cyberscoop.com
Open sourceVercel Confirms Major Security Incident as Hacker Claims $2M Ransom Demand
techrepublic.com
Open sourceAI cloud company Vercel breached after employee grants AI tool unrestricted access to Google Workspace - hacker seeking $2 million for stolen data | Tom's Hardware
tomshardware.com
Open sourceVercel Breached via Context AI Supply Chain Attack
ox.security
Open sourceThird-party AI hack triggers Vercel breach, internal environments accessed - Security Affairs
securityaffairs.com
Open sourceVercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials
thehackernews.com
Open sourceVercel Confirms Data Breach - Hackers Claim Access to Internal Systems
cybersecuritynews.com
Open sourceNext.js developer Vercel warns customer creds compromised • The Register
go.theregister.com
Open sourceApp host Vercel says it was hacked and customer data stolen | TechCrunch
techcrunch.com
Open sourceVercel Confirms Security Breach - TheCyberThrone
thecyberthrone.in
Open sourceVercel breached via compromised third-party AI tool - Help Net Security
helpnetsecurity.com
Open sourceVercel Traces Customer Data Theft to Agentic AI Tool Breach
bankinfosecurity.com
Open sourceVercel Traces Customer Data Theft to Agentic AI Tool Breach
govinfosecurity.com
Open sourceVercel Employee's AI Tool Access Led to Data Breach
darkreading.com
Open sourceNext.js developer Vercel warns customer creds compromised • The Register
theregister.com
Open sourceVercel April 2026 security incident | Hacker News
news.ycombinator.com
Open sourceVercel confirms breach as hackers claim to be selling stolen data
bleepingcomputer.com
Open sourceSee the full picture, correlated to your attack surface.
Map indicators from this story to your assets and identify affected systems in minutes.
Every observed campaign, victim, and pivot linked to actors named in this story.
Malware, exploits, and IOCs connected to the activity described here.
YARA, Sigma, and Snort rules deployed to your SIEM as soon as they’re published.
Get matching new stories delivered to your team as they break — not the next morning.
Ask questions about this story and take action on the answers.
Related stories
Other stories Mallory is tracking that overlap on entities, sources, or topic labels.
ShinyHunters Alleged Breach and Honeypot Operation at Resecurity
The hacking group **ShinyHunters** claimed to have breached the internal systems of *Resecurity*, a US-based cybersecurity firm, releasing screenshots purportedly showing access to sensitive dashboards, user management panels, API keys, employee data, and internal communications. ShinyHunters alleged they exfiltrated internal chats, client lists, threat intelligence data, and employee information, framing the attack as retaliation for Resecurity's alleged attempts to infiltrate threat actor groups by posing as buyers on dark web markets. The group also credited Devman Ransomware for assistance in the attack and published evidence to support their claims. However, *Resecurity* responded by stating that the data accessed by ShinyHunters was part of a sophisticated honeypot operation designed to monitor and log threat actor activity. According to Resecurity, the honeypot included simulated data and a planted honeytrap account, and there was no impact on actual customers or internal operations. Resecurity confirmed that all data referenced by ShinyHunters originated from the honeypot, and they had already logged the attackers' IP addresses. The incident highlights the ongoing cat-and-mouse dynamics between cybersecurity firms and threat actors, as well as the use of deception technologies in cyber defense.
Mar 21, 2026
ADT Confirms Customer Data Breach After ShinyHunters Extortion Claim
ADT disclosed that attackers gained unauthorized access to certain cloud-based environments and stole customer and prospective customer data, prompting the company to activate incident response measures, engage forensic specialists, notify law enforcement, and contact affected individuals. The exposed information included names, phone numbers, and home addresses, with dates of birth and the last four digits of Social Security numbers or Tax IDs affected in a smaller number of cases; ADT said payment information was not accessed and customer home security systems were not impacted. The disclosure followed claims by the **ShinyHunters** extortion group that it had stolen more than 10 million records and internal corporate data and would leak the information if its demands were not met. Reporting tied the intrusion to a suspected vishing attack that allegedly compromised an employee's **Okta** single sign-on account and enabled access to ADT's **Salesforce** environment, matching a broader pattern in which the group targets enterprise SSO accounts and connected SaaS platforms to steal data for extortion.
May 6, 2026
Figure Data Breach Linked to Employee Social Engineering and ShinyHunters Leak
**Figure Technology Solutions**, a blockchain-based lending/fintech firm, confirmed a **data breach** after an employee was **socially engineered**, enabling attackers to access and exfiltrate a **limited number of files**. The company said it is communicating with partners and impacted individuals, has begun sending notifications, and is offering **free credit monitoring** to recipients of breach notices; it has not publicly disclosed the total number of affected individuals or when the incident was detected. The cybercrime group **ShinyHunters** claimed responsibility and alleged Figure refused to pay a ransom, publishing about **2.5GB** of purportedly stolen data on its leak site. Journalists who reviewed samples reported the exposed data included **names, home addresses, dates of birth, and phone numbers**, increasing risk of identity fraud and follow-on phishing. ShinyHunters also told reporters the intrusion was part of a broader campaign affecting organizations including **Harvard University** and **UPenn**, and referenced victims that rely on **Okta** for single sign-on.
Mar 21, 2026