BlockBeats News, April 19, according to SlowMist Chief Information Security Officer 23pds retweet disclosure, "Cloud Hosting Platform Vercel's Internal System Experiences Unauthorized Access," which is suspected to be related to an internal data leak. Previously, an account claiming to be from the well-known hacker group ShinyHunters was selling Vercel's internal data for $2 million. The sale contents include Vercel's internal database, access keys, source code, employee accounts (including internal deployment permissions), API keys, NPM tokens, GitHub tokens, etc., claiming it can be used for a global supply chain attack (Vercel owns ecosystems such as Next.js and Turbo.js, with Next.js having a weekly download volume of 6 million).

The accompanying screenshots shared by the hacker show that the internal data includes Vercel's internal Linear system and internal user management system. Previously, Vercel's official team had contacted ShinyHunters on Telegram, requesting them to stop harassing employees, indirectly proving that Vercel was already aware of this incident.