#crypto

Vercel has been hacked — Web3 frontends at risk

Hosting provider Vercel confirmed a breach — attackers gained access to part of its internal systems via a third-party AI service.

On a hacker forum where stolen data is sold, a supposed database has already been listed for $2 million — including keys, tokens, and source code. Its authenticity has not yet been confirmed.

What matters:

- a “limited portion” of customers was affected;

- the attack began with the compromise of an employee account;

- projects are already mass-rotating API keys and conducting audits.

Vercel is one of the key frontend providers for Web3. In theory, interfaces of dApps, wallets, and DEXs could have been at risk.