Vercel Investigates Breach After Attackers Used Stolen Keys for Rapid API Access

Vercel states that its review of nearly 1 petabyte of logs found attacker activity beyond Context.ai, prompting victim notifications and urgent credential rotation guidance.

32d ago

Summary

Vercel completed a security investigation involving nearly 1 petabyte of network-wide and API logs and found that attacker activity extended beyond the Context.ai breach. The company said a malware campaign targeted account keys on platforms including Vercel, with threat actors using stolen credentials for rapid API access and account interrogation. Vercel notified suspected victims and urged immediate credential rotation, while the reported activity centered on automated credential use rather than a confirmed disclosure of sensitive environment variables.

Terms & Concepts

API (application programming interface): A software interface that lets systems exchange data or trigger actions programmatically, often used for automated account access and service requests.
Environment variables: Configuration values stored by applications or cloud services, often used to manage settings and credentials without hardcoding them into software.
Malware: Malicious software used to compromise devices or steal data, including account keys and other access credentials.