How One Security Mistake Let Attackers Cross Between Two Tech Companies

A Vercel employee gave Context.ai excessive access to their Google account during an app connection. Attackers used that access to enter Vercel's internal systems and steal customer passwords. The breach shows how permission systems designed for easy integration can accidentally create security gaps between companies when not carefully limited.