The Circuitry
THE CIRCUITRYYour one-stop source for all tech news
Home/Tech
VERIFIEDBy Xavier Rivera· ·1 min read

Vercel Confirms Breach as Hackers Sell Stolen Data

Vercel confirms unauthorized access to internal systems after a hacker posts stolen employee data for sale on a forum. The breach affects a limited number of customers, with services unaffected but security reviews advised amid an ongoing investigation.

Source:BleepingComputer
Vercel Confirms Breach as Hackers Sell Stolen Data
Cloud platform Vercel discloses a security incident involving unauthorized access to certain internal systems, affecting a limited subset of customers.

In a bulletin published today, Vercel states it is actively investigating with incident response experts, has notified law enforcement, and is working with impacted customers. The company's services remain unaffected. Vercel advises affected customers to review environment variables, enable its sensitive environment variable feature, and rotate secrets if necessary.

The disclosure follows a threat actor's forum post claiming a breach and offering for sale access keys, source code, database data, internal deployments, and API keys—including NPM and GitHub tokens. The actor, claiming affiliation with ShinyHunters (though the group denies involvement), shared proof from Linear, including multiple employee accounts.

The hacker posted a text file with 580 Vercel employee records containing names, email addresses, account status, and activity timestamps, plus a screenshot of an internal Enterprise dashboard. BleepingComputer has not independently verified the data's authenticity. The actor claims contact with Vercel and a $2 million ransom demand via Telegram messages.

EXPERT TAKE

Cloud admins should immediately audit and rotate any Vercel-linked API keys, NPM tokens, or GitHub credentials across environments to mitigate potential lateral movement.

Why this mattersAI · ~100 words
Reader-supported
CoffeeSupport →Follow@thecircuitry_ →
HELP US IMPROVE
Vercelsecuritybreachcloud

MORE IN TECH

CISA Warns Hackers Exploit Patched SolarWinds Serv-U Flaw

CISA warned that hackers are actively exploiting a recently patched high-severity flaw in SolarWinds Serv-U software to crash servers and added it to its Known Exploited Vulnerabilities Catalog. The agency ordered federal agencies to patch by June 19 and urged all organizations to mitigate the ongoing attacks immediately.

S&P 500 Rejects Fast-Track for SpaceX and AI Firms

S&P Dow Jones Indices refused to waive seasoning, profitability, or public float rules for SpaceX's IPO, blocking accelerated S&P 500 entry that could have unlocked billions in passive funds. The same barriers now apply to expected IPOs from OpenAI and Anthropic, limiting exposure of retirement assets to unprofitable AI bets.

New York Passes One-Year Moratorium on New Large Data Centers

New York lawmakers approved a one-year moratorium on new large data centers, the first such statewide measure if signed by Governor Hochul. The pause aims to study environmental and energy impacts amid growing AI-driven demand.