One employee at Vercel adopted an AI tool. One employee at that AI vendor got hit with an infostealer. That combination created a walk-in path to Vercel’s production environments through an OAuth ...
The post Vercel Breach: How a Roblox Cheat Download Led to a $2M Data Heist Through AI Tool OAuth Abuse appeared first on Deepak Gupta | AI & Cybersecurity Innovation Leader | Founder's Journey from ...
- "ClickFix" is a technique using legitimate but compromised websites that lead to malicious pages. - These malicious pages have messages instructing victims to paste script into a run window. - This ...
- presumably through email --> CVE-2017-0199 Excel file --> HTA --> VBS --> JPG with embedded info --> DBatLoader/GuLoader style malware --> AgentTelsa-style FTP data exfiltration - Criminals have ...