Mercor Faces Cyberattack Linked to LiteLLM Project Compromise

Mercor, a prominent AI recruiting startup, has confirmed it was impacted by a supply chain attack associated with the open source LiteLLM project. The breach, tied to the hacking group TeamPCP, has also seen the extortion group Lapsus$ claim responsibility for accessing Mercor's data. Although the exact method of data acquisition remains unclear, Mercor is actively investigating with third-party forensics experts and communicating with affected parties.

Founded in 2023, Mercor collaborates with companies like OpenAI and Anthropic, facilitating over $2 million in daily payouts and recently achieving a valuation of $10 billion. The breach has raised concerns due to the widespread use of LiteLLM, which was compromised by malicious code that was quickly removed. Despite the rapid response, the incident has prompted LiteLLM to overhaul its compliance processes.

Lapsus$ has shared samples of the stolen data, including Slack and ticketing information, as well as videos of interactions between Mercor's AI systems and contractors. However, Mercor has not confirmed the extent of data exposure or misuse. The incident highlights the vulnerabilities in open source projects and the potential risks for companies relying on them.