## Vercel Breach Exposes Critical OAuth Blind Spot: AI Tool, Infostealer, and Unreviewed Grant Opened Production Access A single employee's adoption of an AI tool, combined with a malware infection at the tool's vendor, created a direct, undetected pathway into Vercel's core production systems. The breach, confirmed by the cloud platform behind Next.js, originated not from a sophisticated zero-day but from an OAuth grant that had never been reviewed. This access allowed attackers unauthorized entry into internal systems, triggering a full-scale incident response involving Mandiant, law enforcement, and a coordinated audit with GitHub, Microsoft, npm, and Socket. The entry point was the Context.ai browser extension. According to analysis by OX Security, a Vercel employee installed this extension. Separately, an employee at the AI vendor Context.ai was infected with an infostealer. This combination gave attackers the credentials needed to establish a persistent OAuth token tied to the Vercel employee's account, which then served as a backdoor. While Vercel's investigation confirmed that its npm packages, including Next.js, Turbopack, and the AI SDK, remain uncompromised, the incident highlights a pervasive security gap. The breach underscores a critical vulnerability in modern software supply chains: the opaque and often unmonitored trust relationships created by third-party OAuth integrations. Security teams frequently lack the visibility to detect, scope, or contain such lateral movement through approved application grants. In response, Vercel has now defaulted environment variable creation to 'sensitive,' but the core issue—the inability to audit and govern OAuth permissions at scale—remains a systemic risk for organizations relying on a sprawling ecosystem of SaaS and developer tools. --- - **Source**: VentureBeat - **Sector**: The Lab - **Tags**: Cybersecurity, OAuth, Supply Chain Attack, Data Breach, SaaS Security - **Credibility**: unverified - **Published**: 2026-04-21 20:22:47 - **ID**: 74765 - **URL**: https://whisperx.ai/en/intel/74765