Cloud development platform Vercel has revealed that hackers may have gained access to some of its customers' databases before the security breach incident last week. In an update on its security incident page, the American company notified that it has identified evidence of safety compromises on its network.
Vercel, a premier cloud platform for frontend developers, recently confirmed that Context.ai, a third-party AI tool, was used to access its internal systems. The attacker, it then said, used that access to take over an employee's Vercel Google Workspace account, which enabled them to gain access to some Vercel environments and environment variables that were not marked as sensitive.
Vercel Confirms Another Security Breach Incident
Now, Vercel has confirmed another cybersecurity incident that may have occurred weeks or months before the April incident. We have identified a small number of customer accounts with signs of compromise that appear to be separate from the April 2026 incident, the company said on its security incident page. Based on our investigation to date, these compromises do not appear to have originated on Vercel systems. We have already contacted those accounts and provided them with specific corrective actions to remediate potential risk. This activity does not appear to be a continuation or expansion of the April incident, nor does it appear to be evidence of an earlier Vercel security incident, it added.
Vercel CEO Explains How a Third-Party AI Tool Led to Security Breach
Vercel CEO Guillermo Rauch shared a post on X writing: A Vercel employee got compromised via the breach of an AI platform customer called Context.ai that he was using. The details are being fully investigated. Through a series of maneuvers that escalated from our colleague's compromised Vercel Google Workspace account, the attacker got further access to Vercel environments.
Vercel stores all customer environment variables fully encrypted at rest. We have numerous defense-in-depth mechanisms to protect core systems and customer data. We do have a capability however to designate environment variables as non-sensitive. Unfortunately, the attacker got further access through their enumeration. We believe the attacking group to be highly sophisticated and, I strongly suspect, significantly accelerated by AI. They moved with surprising velocity and in-depth understanding of Vercel.
At the moment, we believe the number of customers with security impact to be quite limited. We have reached out with utmost priority to the ones we have concerns about. All of our focus right now is on investigation, communication to customers, enhancement of security measures, and sanitization of our environments. We have deployed extensive protection measures and monitoring. We have analyzed our supply chain, ensuring Next.js, Turbopack, and our many open source projects remain safe for our community.
The recommendation for all Vercel customers is to follow the Security Bulletin closely. My advice to everyone is to follow the best practices of security response: secret rotation, monitoring access to your Vercel environments and linked services, and ensuring the proper use of the sensitive env variables feature. In response to this, and to aid in the improvement of all of our customers security postures, we have already rolled out new capabilities in the dashboard, including an overview page of environment variables, and a better user interface for sensitive env variable creation and management.
We are working with elite cybersecurity firms, industry peers, and law enforcement. We have reached out to Context to assist in understanding the full scale of the incident, in an effort to protect other organizations and the broader internet. I also want to thank the Google Mandiant team for their active engagement and assistance. It is my mission to turn this attack into the most formidable security response imaginable. It has always been a top priority for me. Vercel employs some of the most dedicated security researchers and security-minded engineers in the world. I commit to keeping you updated and rolling out extensive improvements and defenses so you, our customers and community, can have the peace of mind that Vercel always has your back.
