Vercel, a prominent cloud development platform that hosts and deploys web applications, has confirmed a security breach after hackers claimed responsibility and attempted to sell stolen data online.
A person identifying as a member of ShinyHunters—the hacking group behind the recent breach of Rockstar Games—posted alleged stolen data, including employee names, email addresses, and activity timestamps. The data was shared on an online forum, raising concerns about the scope and impact of the breach.
In response, Vercel acknowledged the incident in a post on X (formerly Twitter), stating that a "security incident" had occurred and that it affected a "limited subset" of its customers. The company also revealed that the breach originated from a compromised third-party AI tool, though it did not disclose the specific vendor involved.
Key details of the incident:
- Vercel confirmed a security breach on its platform.
- Hackers, allegedly from ShinyHunters, posted stolen employee data online.
- The breach impacted a limited subset of customers.
- The attack vector was a compromised third-party AI tool.
Vercel has not provided further details about the incident, and the investigation is ongoing. The company has not responded to requests for additional information.
Related articles
Fired IT Workers Accidentally Record Own Database Sabotage via Active Teams Call
Perhaps you remember Muneeb and Sohaib Akhter, the 34-year-old twin brothers we profiled earlier this week. Although they had the tech chops to commit...
Elon Musk’s 'Jackass' Trophy Takes Center Stage in OpenAI Trial
Yesterday, in Musk v. Altman, before the jurors came in, Sam Altman's team passed up what looked - from a distance - like a little league trophy. It w...
Windows 11 BitLocker Bypassed by Zero-Day Exploit 'YellowKey' in Seconds
A zero-day exploit circulating online allows people with physical access to a Windows 11 system to bypass default BitLocker protections and gain compl...
Esports World Cup Relocates from Riyadh to Paris Amid Middle East Uncertainty
Uncertainty in the Middle East is apparently forcing the location change.
OpenAI Confirms No User Data Accessed in ChatGPT Mac App Security Breach
OpenAI found no evidence that user data was accessed.
Apple Supports Google Against EU’s Android AI Mandate, Citing Privacy Risks
The company agrees with Google that it would put European users' privacy and safety at risk.
Meta Employees Protest AI Training Using Mouse Tracking Data
Last month, it said it would use employees' mouse movements and keystrokes to train AI models.
Anthropic Links AI 'Misalignment' to Dystopian Sci-Fi Training Data
Those with an interest in the concept of AI alignment (i.e., getting AIs to stick to human-authored ethical rules) may remember when Anthropic claimed...