Web3 hosting backbone Vercel confirms breach as supposed hacker demands $2 million ransom
The Block
Cloud platform Vercel is investigating a security breach linked to a third-party AI tool that potentially exposed internal infrastructure and customer data.Summary
Vercel, a popular cloud development platform widely used by Web3 projects, has confirmed a security breach affecting its internal infrastructure. The company identified the incident's origin as a compromised third-party AI tool's Google Workspace OAuth app. While an entity known as ShinyHunters allegedly offered internal data for a $2 million ransom, attribution remains unverified. The breach poses significant risks to crypto projects that host frontends on Vercel, as unauthorized access could potentially compromise environment variables, API keys, or build outputs. Vercel is currently notifying affected customers and investigating the extent of the impact.
(Source:The Block)