Vercel Confirms Security Breach as Hacker Demands $2 Million and Claims to Sell Internal Access - Unchained

Vercel traced the breach to a compromised third-party AI tool and says sensitive environment variables were not accessed, but Web3 teams hosting on the platform are rotating credentials.

Vercel, the cloud deployment platform that underpins frontend infrastructure for thousands of applications including many Web3 projects, confirmed a security breach on April 19 after a threat actor posted on BreachForums claiming to be selling stolen data for $2 million. The listing claimed to include access keys, source code, database content, and API tokens, including NPM and GitHub tokens tied to internal deployments and developer environments.

Vercel said the intrusion originated from Context.ai, a third-party AI tool used by an employee, whose compromised Google Workspace connection allowed attackers to escalate access into Vercel's internal systems. CEO Guillermo Rauch confirmed this in a post on X. The company said environment variables marked as "sensitive" are stored in a way that prevents them from being read, and that there is no current evidence those variables were accessed. It has not disclosed how many customers were affected beyond describing the impact as limited to "a subset of customers," who are being contacted directly.

For crypto and Web3 teams the breach is particularly sensitive. Vercel is the primary steward of Next.js, one of the most widely used web development frameworks, and hosts wallet interfaces, decentralized app dashboards, and front-end deployments for a significant portion of the industry. Projects storing API keys, private RPC endpoints, or backend service credentials in non-sensitive environment variables face potential exposure. Security researchers immediately advised all Vercel customers to rotate credentials and audit access logs for activity between April 17 and April 19.