Vercel, the cloud platform used to host and deploy web applications, has confirmed a security breach. A person claiming membership in ShinyHunters, the group behind the recent Rockstar Games hack, posted stolen data online including employee names, email addresses, and activity timestamps.
Vercel acknowledged the incident on X, describing it as impacting a 'limited subset' of customers. The attack vector was a compromised third-party AI tool. Vercel has not named which tool was involved.
The unnamed third-party is the detail worth tracking. ShinyHunters has a pattern of supply-chain style intrusions, and the AI tooling angle raises real questions about how development platforms vet the services embedded in their infrastructure. Read the full report at The Verge for the posted data samples and Vercel's complete statement.
[READ ORIGINAL →]