Vercel Breach Traced to Compromised Third-Party AI Tool
On April 20, 2026, cloud platform provider Vercel disclosed a security breach stemming from the compromise of a third-party AI tool, Context.ai. The incident allowed attackers to hijack an employee’s Google Workspace account, granting access to limited internal systems and non-sensitive environment variables. While sensitive data such as credentials marked as "sensitive" remained protected, the breach exposed some customer-related information.
Vercel, known for its serverless deployment solutions and support for frameworks like Next.js, confirmed the attacker demonstrated advanced technical skills, moving swiftly through its infrastructure. The company is collaborating with cybersecurity firm Mandiant and law enforcement to investigate the scope of the breach and has partnered with Context.ai to assess the fallout.
The attack originated from a compromised OAuth app linked to Google Workspace, with Vercel identifying the suspicious app ID as 110671459871-30f1spbu0hptbs60cb4vsmv79i7bbvqj.apps.googleusercontent.com. The incident highlights risks associated with third-party integrations, particularly in AI-driven tools, and underscores the need for heightened scrutiny of OAuth permissions in enterprise environments.
The Context Company cybersecurity rating report: https://www.rankiteo.com/company/the-context-company
Vercel cybersecurity rating report: https://www.rankiteo.com/company/vercel
"id": "THEVER1776690400",
"linkid": "the-context-company, vercel",
"type": "Breach",
"date": "4/2026",
"severity": "85",
"impact": "4",
"explanation": "Attack with significant impact with customers data leaks"{'affected_entities': [{'industry': 'Cloud Platform / Serverless Deployment',
'name': 'Vercel',
'type': 'Company'}],
'attack_vector': 'Compromised third-party OAuth app (Google Workspace)',
'data_breach': {'sensitivity_of_data': 'Non-sensitive (sensitive credentials '
'were protected)',
'type_of_data_compromised': 'Non-sensitive environment '
'variables, customer-related '
'information'},
'date_detected': '2026-04-20',
'date_publicly_disclosed': '2026-04-20',
'description': 'On April 20, 2026, cloud platform provider Vercel disclosed a '
'security breach stemming from the compromise of a third-party '
'AI tool, Context.ai. The incident allowed attackers to hijack '
'an employee’s Google Workspace account, granting access to '
'limited internal systems and non-sensitive environment '
'variables. While sensitive data such as credentials marked as '
"'sensitive' remained protected, the breach exposed some "
'customer-related information.',
'impact': {'data_compromised': 'Non-sensitive environment variables, some '
'customer-related information',
'systems_affected': 'Limited internal systems'},
'initial_access_broker': {'entry_point': 'Compromised OAuth app (Google '
'Workspace)'},
'investigation_status': 'Ongoing',
'lessons_learned': 'Highlights risks associated with third-party '
'integrations, particularly in AI-driven tools, and '
'underscores the need for heightened scrutiny of OAuth '
'permissions in enterprise environments.',
'post_incident_analysis': {'root_causes': 'Compromised third-party AI tool '
'(Context.ai) leading to hijacked '
'Google Workspace account'},
'references': [{'source': 'Vercel Disclosure'}],
'response': {'law_enforcement_notified': 'Yes',
'third_party_assistance': 'Mandiant'},
'title': 'Vercel Breach Traced to Compromised Third-Party AI Tool',
'type': 'Data Breach',
'vulnerability_exploited': 'Compromised OAuth app linked to Google Workspace'}