Vercel disclosed a data breach caused by a compromised third-party AI integration, Context.ai, which abused Google Workspace OAuth to gain access to a Vercel employee's account. Attackers inherited the employee's permissions and accessed internal systems, exposing environment variables not marked as 'sensitive' and a limited subset of customer credentials. Vercel is working with Mandiant and law enforcement, and has urged affected customers to rotate credentials and secrets. A threat actor claiming to be ShinyHunters has allegedly listed stolen data including access keys, source code, and database contents for $2 million on BreachForums, though the claim's authenticity is uncertain.
Sort: