Hackers threaten to leak Mistral files online — AI giant confirms breach, but not what data is involved

TeamPCP hackers stole 450 repositories from Mistral AI and are auctioning them on the dark web for ~$25K
Data includes ~5GB of internal source code for training, fine‑tuning, benchmarking, and model delivery
Group warned if no buyer emerges soon, they’ll leak everything for free; Mistral confirmed SDK contamination but said core systems and user data were unaffected

Hackers who recently stole 450 repositories from Mistral AI are now offering the large set of data to the highest bidder on the dark web – but if a buyer doesn’t appear soon they will leak everything for free.

The TeamPCP hacking group recently launched a supply chain attack called Mini Shai-Hulud against the TanStack npm package. TanStack is a collection of free software designed for building user interfaces with more than 177 million weekly downloads.

malware which harvested developer credentials, cloud secrets, and SSH keys.

Latest Videos From

BleepingComputer, Mistral AI confirmed the criminals compromised a codebase management system.

“They contaminated some of our SDK packages for a brief period,” the company said, stressing that the impacted data was not part of the core code repositories: “Neither our hosted services, managed user data, nor any of our research and testing environments were compromised,” Mistral said.

This didn’t stop TeamPCP from advertising the loot on the dark web for no more than $25,000 They’re saying they stole five gigabytes of “internal repositories and source code” allegedly used for training, fine-tuning, benchmarking, model delivery, and inference in experiments and future projects.

The sale is exclusive, meaning just one person will be getting the goods. TeamPCP also invited Mistral AI to buy it, and said that if a buyer isn’t found within a week, everything will be leaked to the forums for free.

The $25K price is negotiable, they said, and invited other actors to offer what they feel is a reasonable price.

The best antivirus for all budgets

Google logo on a black background next to text reading 'Click to follow TechRadar'

Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews, and opinion in your feeds.

https://cdn.mos.cms.futurecdn.net/Ri2dNNTvgmKGsMuhNDCavZ-2560-80.jpg

Source link

7 new movies and TV shows to watch on Netflix, Prime Video, HBO Max, and more this weekend (May 15)

How to watch Star Plus outside India with a VPN

How to watch Star Plus outside India with a VPN

How to watch Tubi from anywhere

Ex-Israeli Intelligence Official: Shockwaves of Trump’s “Take Over Gaza” Heard, Felt Across Region

What UK political parties are promising in the 2019 general election

Otto Warmbier’s parents want North Korea to suffer for their son’s death

Could a ‘youthquake’ cause Boris Johnson to lose the general election?

Mandalorian & Grogu: Jon Favreau Touts First L.A. ‘Star Wars’ Movie

How Jeremy Allen White Became Rotta the Hutt in Mandalorian and Grogu

‘The Lowdown’ Season 2 Casts Martha Plimpton, Clifton Collins Jr.

Summer House’s Danielle Olivera Pregnant, Expecting Baby With Eoin Heavey

Form 13G 1RT Acquisition Corp. For: 15 May

U.S. debt demand weakens as one shock after another stokes fear that high inflation is here to stay

Tata Steel Q4 Results: Cons PAT soars 147% YoY to Rs 2,965 crore, revenue jumps 13%

Form 13F Susquehanna Foundation For: 15 May

The YouTuber who has become one of Gen Z’s most beloved celebrities

26 last-minute holiday gifts that are still thoughtful and unique

Practicing gratitude regularly can make you less stressed and sleep better

8 things millennials wish you would just stop getting them for the holidays