The Vercel Hack: How One AI Tool Cracked Open the Internet's Deployment Stack

A supply chain attack originating from a third-party AI assistant has exposed customer credentials at one of the web's most critical infrastructure providers -- and no one saw it coming.

On the morning of April 19, 2026, engineers across the internet refreshed their dashboards to find an unsettling message from Vercel the cloud deployment platform that quietly underpins millions of websites, serverless functions, and frontend applications. The company had been breached. Hackers had found their way inside not through some zero-day exploit or brute-force attack against Vercel's own perimeter, but through something far more mundane and far more dangerous: a single employee's AI productivity tool.

In less than 48 hours, a forum post on BreachForums claimed access to Vercel's source code, API keys, GitHub tokens, and NPM tokens enough, the threat actor boasted, to mount "the largest supply chain attack ever." The asking price: $2 million in Bitcoin.

This is the full story of how it happened, why it matters, and what every developer should do right now.

What is Vercel, and Why Should You Care?

If you have deployed a React app, a Next.js site, or virtually any modern JavaScript frontend in the last few years, there is a very good chance you have used Vercel. The company was founded in 2015, originally as ZEIT, and has since become the dominant platform for frontend deployment a cloud layer sitting between your code repository and the open internet.

Vercel is the official steward of Next.js, the React framework with over 520 million NPM downloads in 2025 alone. It runs serverless functions, edge compute, CI/CD pipelines, and preview deployments for companies ranging from scrappy startups to...