Users have been advised to stop interacting with any DeFi application for a few days after Vercel, the creator of Next.js and cloud provider for a large number of crypto’s user-facing platforms, admitted that attackers breached its internal systems.
According to Vercel CEO Guillermo Rauch, the attack happened when one of its employees “got compromised via the breach of an AI platform customer called Context.ai that he was using.”
The attackers, who Rauch says were “significantly accelerated by AI,” apparently escalated through the employee’s Google Workspace account into Vercel’s corporate environment.
A BreachForums seller claiming to be extortion crew ShinyHunters is demanding a $2 million ransom via a listing that allegedly includes GitHub tokens.
For DeFi, the incident is a nightmare. A user interacting with a poisoned Next.js package via a website can sign a transaction straight into an attacker’s wallet.
Vercel disclosed the incident in a Sunday security bulletin, saying that it had found “unauthorized access to certain internal Vercel systems” and had already engaged law enforcement.
Our investigation is ongoing. In the meantime, we have updated the security bulletin with best practices you can follow for peace of mind: https://t.co/u8ImZikeZl
— Vercel (@vercel) April 19, 2026
Following the disclosure, X user and Cork Protocol CTO “Pybast,” who is also former CTO of DeFi cybersecurity company Nefture, warned users to stop interacting with “any DeFi application,” adding that “a lot of DeFi is hosted on Vercel and crypto users are a prime target for such attack.”
Comically, he suggested eth.limo, which also had its own security incident on the same day, as a safer alternative.
Next.js cleared 520 million downloads in 2025, according to Rauch. DeFi dashboards, crypto wallet connectors, and token launchpads use it.
Members of the crypto community were concerned that the hacker could use Vercel credentials to push malicious code to dependencies pulled by thousands of downstream projects.
Rauch has named Mandiant, Google’s incident-response arm, as the firm assisting with incident response.
Only a “limited subset of customers” was affected, Rauch claimed, and services remained operational.
DeFi terrified after Vercel breach
A screenshot of the ransom notice, published by BleepingComputer, advertises multiple employee accounts, internal deployments, API keys, and GitHub tokens.
The vendor attached hundreds of employee records, a screenshot of Vercel’s internal Linear instance, and what appears to be an internal enterprise dashboard.
BleepingComputer couldn’t verify their authenticity.
Curiously, threat actors tied to the actual ShinyHunters extortion crew told BleepingComputer that they had nothing to do with this particular caper.