ChainCatcher report: 23pds, Chief Information Security Officer at SlowMist, retweeted a post suggesting that the unauthorized access to Vercel’s internal systems may be linked to an internal data leak. The tweet states that someone claiming to be ShinyHunters on BreachForums is offering for sale, for $2 million, what is purported to be Vercel’s internal database, access keys, source code, employee accounts, API keys, NPM tokens, and GitHub tokens. The leaked data allegedly includes information from Vercel’s internal Linear system and user management system. Previously, Vercel disclosed that its internal systems had been accessed without authorization, affecting a limited number of customers.
Vercel Security Incident Linked to Potential Internal Database and Key Leak
ChaincatcherShare
Summary
According to Chaincatcher, a recent Vercel security breach may originate from an internal data leak. A user on BreachForums is allegedly offering Vercel’s internal database, access keys, and tokens for $2 million. The data reportedly includes API keys, NPM tokens, and GitHub tokens, potentially linked to Vercel’s Linear and user management systems. Vercel previously confirmed a security incident affecting a limited number of customers. Inflation data and internal system vulnerabilities are currently under review.
Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information.
Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.