Radio and PodcastLive Radio & PodcastsLoading episode
Fetching episode details...
Radio and PodcastLive Radio & PodcastsRadio and PodcastLive Radio & PodcastsFetching episode details...
Radio and PodcastLive Radio & Podcasts
Inside the Vercel Breach: Highlighting OAuth Token Risk In a special edition of Cybersecurity Today, host Jim Love and guest Jamie Blasco (CTO, Nudge Security) discuss Vercel, a major developer hosting platform, and a br...
Inside The Vercel Supply Chain Exploit is an episode from Cyber Security Today by Tech Newsday. Inside the Vercel Breach: Highlighting OAuth Token Risk In a special edition of Cybersecurity Today, host Jim Love and guest Jamie Blasco (CTO,...
This episode belongs to Cyber Security Today.
Use the player on this page to stream the episode online.
Published Apr 24, 2026, 17:39 long, audio available.
Continue listening to more episodes from Cyber Security Today.
May 2, 2026 - 44:51
May 1, 2026 - 10:06
Apr 27, 2026 - 15:46
Apr 22, 2026 - 10:42
Apr 20, 2026 - 20:47
Inside the Vercel Breach: Highlighting OAuth Token Risk In a special edition of Cybersecurity Today, host Jim Love and guest Jamie Blasco (CTO, Nudge Security) discuss Vercel, a major developer hosting platform, and a breach tied to OAuth grants and shadow AI. Reporting shared by Contrast Security's David Lindner describes how a Context AI employee downloaded Roblox AutoFarm scripts, got infected with an info stealer, and attackers harvested credentials, compromised Context AI, then used an over-permissioned OAuth token from a Vercel employee who had signed up to Context AI with an enterprise account and clicked "allow all," with Vercel working with Mandiant on a breach allegedly being sold for $2 million. The episode emphasizes that MFA may not mitigate OAuth abuse, urges admin-managed consent, continuous inventory and auditing of OAuth grants, and better visibility into risky third-party app access across Google Workspace and Microsoft 365. Cybersecurity Today would like to thank Meter for their support in bringing you this podcast. Meter delivers a complete networking stack, wired, wireless and cellular in one integrated solution that's built for performance and scale. You can find them at Meter.com/cst 00:00 Special Edition Intro 00:14 Sponsor Message Meter 00:33 Supply Chain Hack Setup 01:16 Breach Seen In Wild 02:36 Meet Jamie Blasko 02:56 Who Is Vercel 04:34 How The Breach Happened 05:58 Context AI And Shadow IT 07:58 OAuth Controls And Audits 09:11 Impact And Open Questions 11:24 Why MFA Falls Short 12:22 Where To Get Help 14:07 Host Takeaways OAuth Risk 14:53 What To Do Next 16:06 Wrap Up And Feedback 16:42 Sponsor Close Meter 17:24 Final Sign Off
You can listen to Inside The Vercel Supply Chain Exploit online on Radio and Podcast. Open the player on this page to stream the available audio.
Inside The Vercel Supply Chain Exploit is an episode from Cyber Security Today by Tech Newsday.
This episode is 17:39 long.
This episode was published on Apr 24, 2026.
Yes. Use the heart button on the episode page to add it to your favorite episodes list.
Yes. This page shows related episodes from Cyber Security Today when more episodes are available from the podcast feed.