Vercel Got Hacked Through an AI Tool's OAuth Token — Every Enterprise Using Third-Party AI Has This Problem

Attackers breached Vercel by compromising Context.ai's Google Workspace OAuth application, stealing an employee's credentials and accessing customer data. The attack vector — a trusted third-party AI tool with OAuth access to enterprise systems — is present in thousands of organizations.