Vercel, a major development platform that hosts and deploys web apps, was compromised, and hackers are attempting to sell the stolen data. a person claiming to be a member of shiny hunterThe company that was behind the recent hack of Rockstar Games posted some data online, including employees’ names, email addresses and activity time stamps. Vercel confirmed in a post on X that a “security incident” had occurred, and that it had affected a “limited subset” of its customers. Worcel said a compromised third-party AI tool was the route of the attack, though it did not specify which third-party was involved.
Vercel encouraged administrators to review their activity logs for suspicious activity. It also suggested taking steps to “review and rotate environment variables” as an extra precaution in case API keys, tokens or other sensitive data is exposed. it’s over safety bulletin having said this:
Our investigation revealed that this incident originated from a third-party AI tool whose Google Workspace OAuth app was the subject of a widespread compromise, potentially impacting hundreds of its users across multiple organizations.
We are publishing the following IOCs to support the broader community in investigating and investigating potential malicious activity in their environments. We recommend that Google Workspace administrators and Google Account owners immediately investigate the use of this app.
