Security Boulevard

Vercel Breach: How a Roblox Cheat Download Led to a $2M Data Heist Through AI Tool OAuth Abuse

Vercel breached after attacker compromised Context.ai, hijacked an employee's Google Workspace via OAuth, and accessed ...

Microsoft releases emergency patches for critical ASP.NET flaw

Microsoft has released out-of-band (OOB) security updates to patch a critical ASP.NET Core privilege escalation vulnerability ...

Vercel breach exposes the OAuth gap most security teams cannot detect, scope or contain

A Vercel employee's AI tool OAuth grant gave attackers access to internal systems via a four-hop kill chain. Here's what ...
Infosecurity Magazine

Vercel Confirms Cyber Incident After Sophisticated Attacker Exploits Third‑Party Tool

Next.js developer Vercel has confirmed a cyber-incident conducted by a “highly sophisticated” attacker which may have ...
ZAWYA

CIS, Astrix, and Cequence release new AI security companion guides

Dubai, UAE — The Center for Internet Security, Inc. (CIS®), Astrix Security, and Cequence Security today announced the release of three new CIS Critical Security Controls® (CIS Controls®) Companion ...
Le Lézard

Ant Group Unveils Ling-2.6-Flash: A Major Leap in AI Efficiency

Ant Group today officially announced the release of Ling-2.6-flash, a new large language model designed to prioritize efficiency and real-world application. Leveraging a sparse Mixture-of-Experts (MoE ...

Chainguard and Cursor Partner to Secure Agentic Coding with Trusted Open Source

Chainguard, the trusted source for open source, today announced a partnership with Cursor, the leading multi-model AI coding platform, to secure the next generation of agentic software development.
AMBCrypto

6 Steps to Choosing the Right Crypto API for Your Product

Cryptocurrencies and blockchain technologies are an important part of modern financial systems. Businesses around the world ...

How A Roblox Cheat Download Triggered A $2 Million Hack At Vercel

How A Roblox Cheat Triggered A $2 Million Breach At Vercel. Why The Vercel Incident Changes The Economics Of Enterprise AI ...
InfoWorld

The cookbook for safe, powerful agents

Capability without control is a liability. If your AI agents have broad credentials and unmonitored network access, you haven ...
AMBCrypto

‘No npm packages compromised,’ confirms Vercel after security attack

Vercel, a Web3 infrastructure provider, has finally provided a breather to the crypto community as it announced that no Node ...

AI-assisted intruders pwned Vercel via OAuth abuse and a pilfered employee account

Vercel's CEO reckons the crooks behind its recent breach likely had a helping hand from AI, saying the attackers moved with "surprising velocity" and a deep understanding of the company's ...