Google-Workspace

supply-chain 2026-04-20
Vercel Breach: Context.ai OAuth Pivot Exposes Customer Environment Variables
A Lumma Stealer infection at Context.ai gave attackers an OAuth path into a Vercel employee's Google Workspace, then into customer environment variables. ShinyHunters is now selling the data for $2M.
supply-chain oauth vercel context-ai shinyhunters saas google-workspace

Vercel Breach: Context.ai OAuth Pivot Exposes Customer Environment Variables