2026-04
AI Supply Chain
Vercel (via Context.ai)

Shadow-AI tool compromise let attackers pivot into Vercel and demand $2M

What happened

A Vercel employee had personally signed up for the consumer Context.ai / AI Office Suite tool with no security review. After that tool was compromised via infostealer malware, attackers used a stolen OAuth token to reach the employee's Google Workspace and then pivot into Vercel's internal environment.

Impact

Attackers enumerated and decrypted environment variables and customer account data, then listed the stolen database for sale at $2 million on a cybercrime forum.

How this could have been prevented

Unsanctioned AI SaaS with OAuth access to corporate identity is a supply-chain entry point — enforce app governance and mark all secrets as sensitive by default.

Sources

More ai supply chain incidents

Would runtime governance have caught this?

Guardion enforces policy on every agent action inline — with visibility, tamper-evident evidence, and DLP for agents and MCPs.

Request a demo