Vercel has suffered unauthorized access to internal systems, tracing the attack to a compromise of Context ai, an AI tool used by one of its employees. The attacker used that access to take over the employee’s Google Workspace and reach internal environments, while Vercel says sensitive environment variables were not exposed.

The announcement came after a threat actor claiming to be linked to ShinyHunters posted that they were selling alleged Vercel database keys, source code, internal deployment access, and API tokens for $2 million.