Vercel Says Internal Systems Hit in Breach
The incident came to light on Sunday and the company says it has brought in an incident response provider to investigate the intrusion. Details of the intrusion are scant at this point.
By Dennis Fisher
April 19, 2026 | 2 min read
Vercel, a widely used cloud platform for developing and deploying apps, has disclosed a breach of its internal systems, and says a “limited subset of customers” is affected.
The incident came to light on Sunday and the company says it has brought in an incident response provider to investigate the intrusion. Details of the intrusion are scant at this point, but the company recommends that customers check activity logs for suspicious activity and also rotate environmental variables as a precaution. Vercek also suggests that customers use its sensitive environmental variables feature to mark things such as API keys as sensitive, which then causes Vercel to store them in an unreadable format.
“We’ve identified a security incident that involved unauthorized access to certain internal Vercel systems. We are actively investigating, and we have engaged incident response experts to help investigate and remediate. We have notified law enforcement and will update this page as the investigation progresses,” the company said in a statement.
“At this time, we have identified a limited subset of customers that were impacted and are engaging with them directly.”
Vercel provides a wide range of services for developers and enterprises, and has a number of offerings that are focused on agentic AI workloads.
Posts online have connected the Vercel intrusion to the ShinyHunters threat group, which has targeted a wide range of organizations, often through a combination of social engineering tactics and vulnerability exploitation. The group often makes financial demands of compromised companies and sells access to the data it steals and systems it has compromised through online forums.
Vercel did not specify which of its systems were compromised or how many of its customers are affected.
Recent Posts
Recent Comments
No comments to show.
By Dennis Fisher
April 19, 2026 | 2 min read
Dennis Fisher is an award-winning journalist and author. He is one of the co-founders of Decipher and Threatpost and has been writing about cybersecurity since 2000. Dennis enjoys finding the stories behind the headlines and digging into the motivations and thinking of both defenders and attackers. He is the author of 2.5 novels and once met Shaq. Contact: dennis at decipher.sc.
AIData breachСхожі новини
China warns strong El Nino this year may worsen global fossil fuel crisis
