Mercor AI Data Breach: Inside the 4TB Lapsus$ Leak & Supply Chain Attack | The CyberSec Guru
thecybersecguru.com
Massive 4TB Mercor AI data breach by Lapsus$. 211GB of PII, 939GB of source code, and 3TB of video interviews leaked. Detailed attack chain

Original Reddit post

On March 24, 2026, Mercor was breached after its internal AI tools pulled a compromised LiteLLM package, part of a wider supply chain attack. This allowed the hacking group Lapsus$ to gain access to internal systems, including Tailscale VPN credentials, and exfiltrate around 4 TB of data, including 939 GB of source code, 211 GB of candidate records, and 3 TB of video interviews and identity documents. Mercor confirmed it was among the companies affected by the LiteLLM compromise and said its security team acted quickly to contain the breach and begin remediation. submitted by /u/raptorhunter22

Originally posted by u/raptorhunter22 on r/ArtificialInteligence