Token Security Uncovers 'Zapocalypse' Exploit Chain Threatening Zapier Users
Event summary
- Token Security's Yair Balilti will present 'Zapocalypse' exploit research at fwd:cloudsec North America on June 1, 2026.
- The exploit chain targets Zapier users, escalating from a sandboxed Python environment to full AI platform account takeover.
- Research reveals vulnerabilities in serverless isolation, secret handling, and API security across automation platforms.
- Session covers hardcoded keys, orphaned AWS tokens, dependency poisoning, and Stored XSS attacks.
- Token Security is backed by Notable Capital, Crosspoint Capital, and TLV Partners.
The big picture
As automation platforms and AI agents become the high-privilege control layer of modern enterprises, this research highlights significant security risks in poorly monitored, highly-privileged identities. The findings challenge assumptions about serverless isolation and secret handling, demonstrating how attackers can exploit these environments. This comes at a time when enterprises are increasingly relying on AI-driven workflows, making the security of these systems critical.
What we're watching
- Exploit Mitigation
- How quickly Zapier and similar automation platforms will patch the disclosed vulnerabilities.
- Market Response
- Whether this research will accelerate adoption of Token Security's AI agent security solutions.
- Industry Impact
- The pace at which other automation platforms will conduct similar security audits of their systems.
Related topics