Vercel disclosed an incident where attackers gained unauthorized access to internal systems after a third-party AI tool, Context.ai, was compromised and used to access an employee’s Google Workspace account. The company says the impact appears limited, has notified affected users and advised credential and environment-variable rotation while working with Mandiant and law enforcement and publishing indicators of compromise. #Vercel #ContextAI
Keypoints
- The breach originated from a compromised Context.ai integration that led to a Google Workspace account takeover.
- Attackers moved laterally into Vercel systems and accessed environment variables not marked as sensitive.
- Vercel reports no evidence that encrypted sensitive environment variables were read.
- Vercel has notified affected customers, advised rotating credentials and deployment tokens, and published indicators of compromise.
- The company is working with Mandiant, Context.ai, and law enforcement and has deployed additional protections and dashboard improvements.
Read More: https://thecyberexpress.com/vercel-security-incident-linked-to-ai-tool/