Advertisement
HIGH
Identity & Access
OAuth Token Hijacking in AI Tools: Vercel Breach Analysis
An investigation into how stolen OAuth tokens from a Vercel employee's AI tool session led to unauthorized internal access and the risks of AI integration.
Runtime Rebel Intel
3 min read·Apr 21, 2026
MA
HIGH
Malware
Storm Infostealer: Bypassing Local Decryption for Session Hijacking
Storm infostealer exfiltrates encrypted browser data for server-side decryption, allowing attackers to bypass MFA and hijack active user sessions.
Runtime Rebel Intel
3 min read·Apr 13, 2026