Vercel Breach Expands: Hackers Accessed Customer Data Before Known Attack, More Victims Expected

Vercel confirms hackers accessed customer data before its early-April breach, with infostealer malware suspected as the attack vector targeting tokens and API keys, as investigators warn the incident is broader in scope with more victims expected to emerge.

• Vercel confirms that hackers accessed customer data before its early-April breach, suggesting the security incident is broader in scope and may have lasted longer than initially known.
• Evidence points to infostealer malware as a likely attack vector, with hackers targeting valuable tokens and API keys to gain unauthorized access to Vercel's internal systems, including unencrypted customer credentials.
• Both Vercel and Context AI warn that more companies and victims may be identified as investigations expand, while the full number of affected customers remains undisclosed.