The Next Web

Lovable left thousands of projects exposed for 48 days, and the vibe coding security crisis is only getting worse

Lovable's API exposed source code and database credentials for 48 days after the company closed a bug report. Up to 62% of AI ...
InfoWorldOpinion

Are we ready to give AI agents the keys to the cloud? Cloudflare thinks so

As agents are given permission to handle provisioning, billing, and deployment, enterprises face new challenges around ...

Vercel breach exposes the OAuth gap most security teams cannot detect, scope or contain

A Vercel employee's AI tool OAuth grant gave attackers access to internal systems via a four-hop kill chain. Here's what ...
Security Boulevard

Vercel Breach: How a Roblox Cheat Download Led to a $2M Data Heist Through AI Tool OAuth Abuse

Vercel breached after attacker compromised Context.ai, hijacked an employee's Google Workspace via OAuth, and accessed ...
Financial IT

Stripe Builds Out the Economic Infrastructure for AI With 288 Launches

Stripe today announced 288 new products and features at Stripe Sessions, its annual customer conference, as the company builds the economic infrastructure for AI. That means accelerating AI companies’ ...
Cryptopolitan on MSN

More users enter impact radius of Vercel exploit

The April 2026 Vercel security incident continues to extend past initial claims. The incident, which was said to involve what ...
Tom's Hardware on MSN

AI cloud company Vercel breached after employee grants AI unrestricted access to Google Workspace

The breach exposed non-sensitive environment variables, and a threat actor operating under the ShinyHunters name has claimed responsibility.
Crunchbase News

Exclusive: Supabase Execs Were So Impressed With Dreambase, They Became Investors In Its $3.7M Round

Dreambase, an AI-powered analytics platform that aims to help people build data-driven companies without hiring a data team, ...