Forensic Summary
The TeamPCP threat group has compromised Mistral AI's codebase management system via the Shai-Hulud software supply chain attack, stealing approximately 5GB of internal repositories covering training, fine-tuning, benchmarking, and inference pipelines. The hackers are demanding $25,000 for nearly 450 repositories or threatening to leak them publicly within a week. Mistral AI confirmed the breach but stated that core repositories, hosted services, managed user data, and research environments were not affected.
Read the full technical deep-dive on Grid the Grey: https://gridthegrey.com/posts/teampcp-steals-5gb-of-mistral-ai-source-code-via-supply-chain-attack/
Top comments (0)