VentureBeat

Vercel breach exposes the OAuth gap most security teams cannot detect, scope or contain

One employee at Vercel adopted an AI tool. One employee at that AI vendor got hit with an infostealer. That combination created a walk-in path to Vercel’s production environments through an OAuth ...
Indiatimes

Billion-dollar company Vercel 'names and shames' the AI tool that got its systems hacked; says: We assess the attacker as ...

Cloud development platform Vercel has confirmed a security breach incident involving unauthorised access to its internal systems. For those unaware, Vercel is a premier cloud platform for frontend ...
Hosted on MSN

Vercel confirms security incident involving unauthorized access to internal systems

Vercel confirms cyberattack via compromised Context.ai account Attacker accessed employee Google Workspace, exposed non‑sensitive environment data Dark web actor claims ShinyHunters link, selling ...
InfoWorld

Hackers exploit Vercel’s trust in AI integration

Compromised Context.ai integration let attackers inherit Vercel employee access and reach internal systems, exposing a limited set of customer credentials. Frontend cloud platform Vercel, the creator ...
Hosted on MSN

Vercel identifies more accounts affected by security incident

Vercel expanded its breach investigation, confirming more compromised accounts than initially reported. Researchers linked the attack to a Context.ai account infected with Lumma Stealer malware, which ...

Vercel launches a new framework and enterprise controls for agentic AI infrastructure

Front-end software development startup Vercel Inc. introduced a set of new products today at Ship, its annual conference, to ...

Vercel Brings New Agent Framework, Full-Stack Capabilities, and Enterprise Controls to Its Agentic Infrastructure Platform

As agents become the primary way software is built and deployed, Vercel connects its frontend, backend, and agent tooling into a single platform for shipping and running agents at scale.
GIGAZINE

A critical vulnerability in Next.js that has existed for several years has allowed hackers to bypass middleware-based authentication, and Vercel fixed the vulnerability on ...

A critical vulnerability has been discovered in Next.js, an open source web development framework, that could allow an attacker to bypass authentication checks. Next.js is a React framework for ...