Skip to content
Tech News
← Back to articles

Vercel says some of its customers’ data was stolen prior to its recent hack

2026-04-23 | original
read original get Vercel Data Security Guide → more articles
Why This Matters

The recent Vercel security breach reveals that some customer data was compromised prior to the main incident, indicating a potentially larger and more prolonged security threat. This highlights the importance of robust cybersecurity measures for cloud service providers and their clients. The incident underscores the ongoing risks of social engineering, malware, and insider vulnerabilities in the tech industry.

Key Takeaways

App and website hosting giant Vercel on Thursdays said hackers had accessed some of its customers’ data before the company discovered its recent data breach, suggesting that this incident may have broader security implications than initially known.

In an update on its security incident page, Vercel said it had identified evidence of malicious activity on its network preceding the early-April breach after it expanded its initial investigation.

“We have uncovered a small number of customer accounts with evidence of prior compromise that is independent of and predates this incident, potentially as a result of social engineering, malware, or other methods,” the update reads.

Vercel also said it discovered more customer accounts compromised by the April incident, but did not disclose details, only saying that it had notified customers known to be affected so far.

The San Francisco-based app and website hosting company initially said its internal systems were breached after an employee downloaded an app made by software startup Context AI, which hackers abused to gain access to the employee’s work account, and subsequently, Vercel’s systems.

The new update suggests the data breach may be larger in scope and could have lasted longer than initially thought.

In a post on X, Vercel CEO Guillermo Rauch confirmed that the hackers who compromised Vercel have been active “beyond that startup’s compromise,” referring to Context AI, which confirmed an earlier breach of its systems in a post this week.

A Vercel spokesperson declined to comment beyond the update on the incident page. They would neither confirm how many customers the breach now affects, nor say how far the second compromise dates back.

Vercel has not yet confirmed how the hackers broke into its systems, but Rauch pointed to early signs that the hackers relied on malware that compromises computers “in search of valuable tokens like keys to Vercel accounts and other providers.”

Rauch may be referring to information stealing malware, or infostealers, which often masquerade as legitimate software. When installed, the malware collects and uploads sensitive secrets from the victim’s computer, including passwords and other private keys, allowing hackers to enter any system that those keys allow access to.

... continue reading

Explore topics: vercel context ai san francisco data breach social engineering
Related:
France confirms data breach at government agency that manages citizens' IDs
Grab a ticket today: The first StrictlyVC of 2026 kicks off in just a week in San Francisco
Another customer of troubled startup Delve suffered a big security incident
Cosmetics giant Rituals discloses data breach affecting customers
France's national agency for managing IDs and passports suffered a data breach last week

© 2026 GoKawiil

About | Editorial Policy | Contact