Vercel publicly disclosed a security incident on April 20, 2026. Attackers gained unauthorized access to Vercel’s internal systems via a compromised third-party AI tool.
The compromised tool was Context.ai, which was utilized by a Vercel employee. Attackers took control of the employee’s Google Workspace account to infiltrate Vercel environments.
Non-sensitive environment variables were accessed. This could potentially expose API keys and database credentials. Vercel has identified a limited number of affected customers and is contacting them to rotate their credentials.
However, the incident may affect hundreds of users across various organizations because of the OAuth app linked to Context.ai. Vercel is collaborating with Mandiant and law enforcement to investigate the breach.
A post on BreachForums claims to be selling Vercel data for two million dollars. Yet, details remain unconfirmed regarding the authenticity of these claims.
Guillermo Rauch stated, “The attackers were able to gain further access through the enumeration of these non-sensitive variables.” Vercel describes the attacker as “highly sophisticated,” indicating advanced knowledge of their systems.
Despite this breach, Vercel’s services remained operational throughout the incident. Founded in 2015, Vercel is known as the primary steward of Next.js, which boasts six million weekly downloads.
In its most recent funding round in September 2025, Vercel was valued at $9.3 billion. The company urges Google Workspace administrators to check their environments for relevant OAuth apps as part of their response strategy.
