TechFlow reports that on April 23, Guillermo Rauch (@rauchg), CEO of Vercel, announced the company is conducting an in-depth investigation into a security incident that occurred in April 2026. The investigation revealed that the attackers initially breached Vercel’s systems via an account belonging to startup Context.ai; however, their activities extended far beyond this initial intrusion. Threat intelligence indicates that the attackers distributed malware to steal Vercel account credentials and API keys from other service providers, then used those keys to rapidly and extensively enumerate non-sensitive environment variables. To trace the root cause, Vercel has processed nearly 1 petabyte of network and API logs. The company is collaborating with industry partners—including Microsoft, AWS, and Wiz—to respond to the incident and has proactively notified other potentially affected parties, advising them to rotate credentials and adopt security best practices.
Risk Disclosure: This website's content is not investment advice and offers no trading guidance or related services. Per regulations from the PBOC and other authorities, users must be aware of virtual currency risks. Contact us / support@techflowpost.com ICP License: 琼ICP备2022009338号
