Posting this from a co-founder’s community account on behalf of the account owner, who is locked out.
Hi Vercel team — asking for help escalating an active account takeover.
Summary
- Case number: 01116562
- Account email: lyginmail@gmail.com
- GitHub username used for login: Jupels
- Project: heysasha
- Plan: Hobby
What happened
Two-factor authentication was enabled on the account without authorization. The account owner never set up 2FA and has no recovery codes. He can no longer log in. The account is accessed via GitHub OAuth, so a Vercel-level 2FA prompt after the OAuth step is what is blocking him.
Why this is time-sensitive
The project hosts the production backend for an iOS app that is currently live on the App Store with active users. While an unauthorized party potentially retains access and the legitimate owner does not, there is real risk of:
- malicious code being deployed to the production environment
- environment variables being exfiltrated (DB credentials, third-party API keys)
- the behavior of a live iOS app being altered server-side without going through App Store review, since the app calls this backend by domain
We are treating this as an active security incident, not a routine login issue.
What we’ve already done
- Opened case 01116562 via the recovery channel
- Rotated credentials on the linked GitHub account and reviewed its security log
- Preparing a fallback deployment on an alternate host in case recovery takes time
What we’re asking
Please route case 01116562 to the security team and let us know the fastest identity verification path. The account owner can verify via:
- the GitHub account used for login (Jupels)
- any other signal you prefer
Happy to continue details privately via the case. Thank you.