Vercel Security Breach Linked to Context.ai Hack Exposes Customer Data

Web infrastructure provider Vercel confirms a security breach, allowing unauthorized access to some of its internal systems. The incident traces back to the compromise of Context.ai, a third-party AI tool used by a Vercel employee.

Breach Details and Immediate Actions

The attacker exploited the compromised Context.ai account to take over the employee's Vercel Google Workspace account. This provided access to certain Vercel environments and environment variables that were not marked as 'sensitive.' Vercel assures that sensitive environment variables are encrypted and currently show no signs of being accessed.

Describing the threat actor as 'sophisticated,' Vercel is collaborating with Mandiant, other cybersecurity firms, and law enforcement to investigate the full scope of the breach. A limited subset of customers has had their credentials compromised, and Vercel is directly contacting them to rotate their credentials immediately.

Investigation and Mitigations

Vercel continues to investigate the extent of the data exfiltration and plans to notify additional customers if further evidence of compromise emerges. The company recommends several best practices for Google Workspace administrators and Google account owners, including enabling multi-factor authentication, reviewing activity logs, and rotating environment variables.

While Vercel has not disclosed which specific systems were breached or the number of affected customers, a threat actor using the ShinyHunters persona claims responsibility, offering the stolen data for $2 million. Context.ai, in a separate bulletin, disclosed an incident in March where it identified and blocked unauthorized access to its AWS environment. However, it appears the attacker also compromised OAuth tokens for some of its consumer users, including at least one Vercel employee who granted broad permissions in Vercel's enterprise Google Workspace.

Context.ai's Response and Industry Implications

Context.ai has alerted all impacted customers and provided necessary steps to secure their accounts. Hudson Rock reports that a Context.ai employee was compromised with Lumma Stealer in February, potentially triggering the supply chain escalation. The stolen records included Google Workspace credentials, along with keys and logins for Supabase, Datadog, and Authkit.

References

• Vercel Breach Tied to Context AI Hack Exposes Limited Customer Credentials