Link: Cloud development platform Vercel was hacked

Vercel confirmed that hackers compromised their development platform, impacting a subset of its customers. The breach was announced after a hacker group, allegedly ShinyHunters, posted employee data online.

The security breach originated from a compromised third-party AI tool linked to Google Workspace OAuth app. Vercel did not disclose the identity of the third-party involved.

Vercel has prompted administrators to check their activity logs for any unusual activities. This is a precaution to safeguard further information that might have been exposed during the incident.

Additionally, they advised strengthening security by reviewing and rotating environmental variables. These measures are critical if API keys or tokens were compromised.

The company issued an incident of compromise (IOC) to aid others in the community to detect and address potential threats. Google Workspace Administrators are specifically urged to verify the usage of the implicated OAuth app.

Vercel is taking steps to support its community by publishing IOCs for wider use in ongoing investigations regarding the incident. This assists in identifying and mitigating possible malicious activities in various environments. #

--

Yoooo, this is a quick note on a link that made me go, WTF? Find all past links here.