AppReviewPros News reported on April 20 that Vercel, a mainstream web application hosting and deployment platform, was hacked, and the hackers are attempting to sell the stolen data. A person claiming to be a member of ShinyHunters, the organization behind the recent hack of Rockstar Games, posted some of the data online, including employee names, email addresses, and operation timestamps.
Vercel confirmed a security incident in a statement on its social media platform X, affecting only a small number of its customers. The company stated that the attack was carried out through a compromised third-party AI tool, but did not disclose which third-party vendor was involved.
AppReviewPros noted that Vercel recommended administrators check operation logs and investigate suspicious behavior. Additionally, to prevent the leakage of API keys, tokens, or other sensitive data, they recommended taking extra precautions such as verifying and rotating environment variables. Their security bulletin concluded:
An investigation confirmed that this security incident originated from a third-party AI tool whose Google Workspace OAuth application was widely compromised, potentially affecting a large number of users across hundreds of organizations.
We are now publishing the following Intrusion Detection Indexes (IOCs) to help industry peers investigate potential malicious activity in their environments. Google Workspace administrators and Google account holders are advised to immediately review their use of this application.
About The Author
