📋 Compliance & Policy

Mercor's 4TB Nightmare: LiteLLM's Supply Chain Poison Reaches AI Hiring Giant

LiteLLM lurks in 36% of cloud environments — and now it's bitten Mercor hard. Extortionists boast 4TB of pilfered data, from video interviews to VPN creds.

James Kowalski 📅 Apr 03, 2026 ⏱️ 3 min read 👁️ 0 views
Mercor AI recruiting platform interface with red breach alert overlay and LiteLLM logo

⚡ Key Takeaways

  • LiteLLM's 36% cloud prevalence turned a 40-minute PyPI slip into thousands of potential victims, including Mercor.
  • Lapsus$ claims 4TB Mercor data theft — PII, code, creds — highlighting AI firms' OSS vulnerabilities.
  • Supply chain attacks like this echo SolarWinds; AI startups must harden deps or face trust implosion.

🧠 What's your take on this?

Cast your vote and see what Threat Digest readers think

James Kowalski
Written by

James Kowalski

Investigative tech reporter focused on AI ethics, regulation, and societal impact.

#Lapsus$ extortion #LiteLLM attack #Mercor breach #supply chain attack

Worth sharing?

Get the best Cybersecurity stories of the week in your inbox — no noise, no spam.

Originally reported by SecurityWeek

Related Stories

📬

Stay in the loop

The week's most important stories from Threat Digest, delivered once a week.

No spam. Unsubscribe any time.