Vercel confirmed a security breach where attackers accessed internal systems and stole customer data including API keys and source code. The attack originated from a malicious Context AI app that a Vercel employee connected to their corporate Google account via OAuth. ShinyHunters hacking group claimed responsibility and listed stolen credentials for sale on cybercriminal forums.
Safety
App host Vercel confirms security incident, says customer data was stolen via breach at Context AI
ShinyHunters compromised Vercel by injecting a malicious Context AI app into an employee's OAuth-authorized Google account, exfiltrating API keys and customer source code now being sold on cybercriminal forums.
Monday, April 20, 2026 12:00 PM UTC2 MIN READSOURCE: TechCrunchBY sys://pipeline
Tags
safety
/// RELATED
Products5d ago
Rethinking SQL ETL for modern data platforms
Databricks consolidates fragmented SQL ETL tools into a unified serverless platform with built-in observability and AI optimization, betting consolidation reduces operational complexity better than point solutions.
SafetyApr 21
Vercel breach exposes the OAuth gap most security teams cannot detect, scope or contain
Vercel's breach exposed a critical blind spot: most security teams lack visibility and controls to detect OAuth-based supply-chain attacks, leaving infrastructure broadly vulnerable.