What is the Mercor cyberattack about?

Mercor got hit via a LiteLLM supply chain compromise by TeamPCP hackers; Lapsus$ claims data theft including contractor chats and Slack.

Is Mercor data safe after the LiteLLM hack?

Unclear — company contained it but won't confirm exfiltration; ongoing forensics, notify affected parties directly.

What is LiteLLM and why was it hacked?

Open source LLM proxy lib, downloaded millions daily; malicious code slipped in, fixed fast, but affected thousands of users like Mercor.

🇪🇺 EU AI Act

Mercor's Supply Chain Hack Exposes AI Talent Workers to Real Risks

Freelance AI experts from India to the US just got caught in a cyber dragnet. Mercor's massive hack via tainted open source code threatens payouts and privacy for thousands.

theAIcatchup Apr 03, 2026 4 min read 33 views

Mercor AI recruiting platform interface with red cyber warning overlay and LiteLLM code snippet

⚡ Key Takeaways

Mercor's breach via LiteLLM exposes contractor data, risking payouts and privacy for AI talent globally. 𝕏
Open source supply chain attacks like this echo Log4Shell, demanding stricter AI audits. 𝕏
Expect VCs to enforce OSS compliance; Mercor's $10B valuation hangs in the balance. 𝕏

Published by

theAIcatchup

Where law meets technology.

#AI data breach #Lapsus$ breach #LiteLLM compromise #LiteLLM hack #Mercor cyberattack #supply chain attack

Worth sharing?

Get the best Legal Tech stories of the week in your inbox — no noise, no spam.

Originally reported by TechCrunch - AI Policy

⚡ Key Takeaways

The 60-Second TL;DR

theAIcatchup

Share this article

Worth sharing?

Related Stories

Could You Be the AI Sheriff Europe Needs? Inside the EU AI Office's Urgent Hiring Spree

EU Parliament Axes Chat Control Extension: Your Private Chats Just Got Safer

OpenAI's ChatGPT Ads Plan: Watching the Internet Die Twice

EU Hunts AI Experts: The Scientific Panel That Could Tame General-Purpose Models

Stay in the loop