Home
News
Details

AI data firm Mercor confirms major data breach affecting OpenAI and Anthropic

iconTechFlow
Share
Share IconShare IconShare IconShare IconShare IconShare IconCopy
AI summary iconSummary

expand icon
A security breach at the AI data firm Mercor has exposed sensitive client information, including from OpenAI and Anthropic. The attack was carried out via a compromised open-source library, LiteLLM, in which hackers embedded malicious code. Lapsus$ claimed to have stolen 4TB of data, including internal communications and source code. Mercor is collaborating with third-party experts to investigate. The incident has raised concerns about the security of inflation data and other confidential assets within the AI sector.

According to Fortune, Mercor, a startup that provides training data to AI companies such as OpenAI, Anthropic, and Meta, has confirmed a major security breach. The incident stemmed from a supply chain attack on the open-source library LiteLLM, which is widely used by developers to connect to AI services and receives millions of daily downloads. The attack was carried out by the hacker group TeamPCP, which embedded malicious code within LiteLLM to steal credentials. Another hacker group, Lapsus$, later claimed to have obtained up to 4TB of Mercor’s data, including source code, database records, internal Slack communications, and recorded platform conversations. Unverified reports suggest that some of Mercor’s clients’ datasets and confidential AI project information may have been compromised. Mercor stated it has swiftly taken measures to contain the incident and has initiated a third-party forensic investigation.

Source:Show original
Disclaimer: The information on this page may have been obtained from third parties and does not necessarily reflect the views or opinions of KuCoin. This content is provided for general informational purposes only, without any representation or warranty of any kind, nor shall it be construed as financial or investment advice. KuCoin shall not be liable for any errors or omissions, or for any outcomes resulting from the use of this information. Investments in digital assets can be risky. Please carefully evaluate the risks of a product and your risk tolerance based on your own financial circumstances. For more information, please refer to our Terms of Use and Risk Disclosure.