:warning:Delve's Security Certifications Under Fire After Data Breach
Your startup's security audits just got a whole lot more scrutiny
TL;DR
Delve, a security certification company, is facing backlash after a data breach at Vercel and allegations that it was faking customer data. The incident has sparked concerns about the integrity of security audits in the industry.
Delve's reputation took a hit after a data breach at Vercel, where hackers accessed some customer data through an employee's Google account connected to Vercel's corporate account hosted by Google. This is not the first time Delve has been accused of faking customer data. In March, allegations surfaced that Delve was denying refunds to customers but still took its team on a Hawaii trip. Delve has over 20 people on its team. The company used Delve for security certification but has since ditched the startup and is getting re-certified with Vanta and Insight Assurance.
Key Points
Vercel said hackers breached its internal systems and accessed some customer data, with Context AI confirming it used Delve for security certification but has since ditched the startup.
Delve was accused of taking an open source tool and passing it off as its own work without proper license attribution, leading to a severed relationship with Y Combinator.
Lovable re-completed one security certification and is redoing others after inadvertently sharing access to customer chat data publicly.
The anonymous whistleblower, DeepDelver, published another post alleging Delve was denying refunds to customers but still took its team on an offsite meeting in Hawaii between April 15 and April 19.
Delve has over 20 people on its team and its reputation grew shaky after the allegations were made.
Why It Matters
If you're running Postgres on RDS, Aurora's new IO-Optimized mode flips the economics — reads get 25% faster without paying per-IOPS. But the $0.20/GB-month premium only pencils out above ~100K read IOPS per instance, so smaller databases should stay put. Anyone on Aurora Serverless v2 gets this automatically starting November 1.
Frequently Asked Questions
Why does this matter?
If you're running Postgres on RDS, Aurora's new IO-Optimized mode flips the economics — reads get 25% faster without paying per-IOPS. But the $0.20/GB-month premium only pencils out above ~100K read IOPS per instance, so smaller databases should stay put. Anyone on Aurora Serverless v2 gets this automatically starting November 1.
What happened?
Delve, a security certification company, is facing backlash after a data breach at Vercel and allegations that it was faking customer data. The incident has sparked concerns about the integrity of security audits in the industry.
Comments
Be the first to comment
Enjoyed this article?
Get it daily. 7am. Free. Reads in 5 minutes.