- TeamPCP hackers stole 450 repositories from Mistral AI and are auctioning them on the dark web for ~$25K
- Data includes ~5 GB of internal source code for training, tuning, benchmarking and model delivery
- The group warned that if no buyer emerges soon, they will leak everything for free; Mistral confirmed SDK contamination but said core systems and user data were unaffected
Hackers who recently stole 450 repositories from Mistral AI are now offering the large set of data to the highest bidder on the dark web – but if a buyer doesn’t emerge soon, they’ll leak it all for free.
The TeamPCP hacking group recently launched a supply chain attack called Mini Shai-Hulud against the TanStack npm package. TanStack is a collection of free software designed for building user interfaces with more than 177 million weekly downloads.
By poisoning the package, TeamPCP managed to distribute an infostealer malware that harvested developer credentials, cloud secrets, and SSH keys.
Flexible price
In a statement shared with Bleeping ComputerMistral AI confirmed that the criminals compromised a code base management system.
“They contaminated some of our SDK packages for a short period of time,” the company said, stressing that the affected data was not part of the core code repositories: “Neither our hosted services, managed user data, nor any of our research and testing environments were compromised,” Mistral said.
This did not stop TeamPCP from advertising the loot on the dark web for no more than $25,000. They say they stole five gigabytes of “internal archives and source code” allegedly used for training, fine-tuning, benchmarking, model delivery and inference in experiments and future projects.
The sale is exclusive, meaning only one person gets the items. TeamPCP also invited Mistral AI to buy it, saying that if a buyer is not found within a week, everything will be leaked to the forums for free.
The $25,000 price is negotiable, they said, and invited other actors to offer what they feel is a fair price.
The best antivirus for all budgets
Follow TechRadar on Google News and add us as a preferred source to get our expert news, reviews and opinions in your feeds.
