Mercor AI Startup Hit by Supply Chain Attack via LiteLLM Compromise

AI recruiting startup Mercor confirmed a data breach resulting from a supply chain attack on the LiteLLM open-source project, which allowed the Lapsus$ extortion group to claim access to platform source code, personal data and TailScale VPN environment.