// UNCLASSIFIED // CLEARED FOR PUBLIC RELEASE //
FILE BRC-newsDTG 0600Z
Breach Record

Mercor

DISCLOSED 2024-01-15 · SUPPLY CHAIN

Mercor, a $10B AI startup, was breached via a supply chain attack on LiteLLM. The threat actor Lapsus$ claims to have stolen 4 TB of data including video interviews, face scans, and passports. The breach highlights the risks of third-party dependencies in AI supply chains.

The record

What we know

Disclosed
2024-01-15
Attack vector
Supply Chain
Sector
AI
Data classes exposed
video interviewsface scanspassports
Sources

Cited reporting

Similar vector · recent

Other supply chain breaches on file

This page is the permanent ColdRecon entry for the Mercor disclosure. It updates if new public reporting emerges. All tracked breaches →

Mercor just lived through this. Your next prospect doesn't have to.

ColdRecon turns every disclosed breach into a daily intelligence brief from the seller's seat — normalized to the factors that move a deal, written in the Handler's voice. Request clearance and the first lands tomorrow at 0600.

Request Clearance →