Vercel Breach Traces Back to a Roblox Cheat: How a Lumma Stealer Infection at Context.ai Became an OAuth Pivot Into a Cloud Provider
A Lumma Stealer infection at AI startup Context.ai escalated into a cross-tenant OAuth attack on Vercel, exposing employee accounts, environment variables, and customer credentials, with attackers reportedly demanding a $2 million ransom in Telegram messages with the company.
6 min read4 sources