New Delhi, April 3 -- Mercor, a $10 billion AI startup that provides data to major AI firms including OpenAI and Anthropic, has confirmed that it was hit by a security breach that may have exposed sensitive company and user data.

The security incident was linked to a supply chain attack involving an open source project named LiteLLM, and Mercor on Tuesday confirmed to TechCrunch that it was "one of the thousands of companies" that had been affected by the compromise of LiteLLM's security.

While the LiteLLM breach was linked to a hacking group called TeamPCP, another group called Lapsus$, known for extorting victims, claimed to have targeted Mercor.

It was not immediately clear how Lapsus$ got the stolen Mercor data, and whether it part...