Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Mistral AI hit by network compromise

Incident
First reported
Last updated
Happening score
H score 13
1 unique sources, 1 articles

Summary

Hide ▲

Mistral AI disclosed a codebase management system compromise tied to the Mini Shai-Hulud supply-chain attack, and the intrusion briefly contaminated some SDK packages. The company said hosted services, managed user data, and research and testing environments were not compromised, limiting the blast radius.

Related Happenings

Grafana Labs source code leak and extortion demand

Data Leak
First: 19.05.2026 12:15 Last: 19.05.2026 12:15 Sources 1

About this happening: The **Grafana Labs** codebase was **downloaded from its GitHub environment**, creating a risk that proprietary source code could be **released or misused**. The company said **no...

Open Happening

TeamPCP campaign expands across multiple victims

Campaign
First: 15.05.2026 13:54 Last: 15.05.2026 13:54 Sources 1

About this happening: The **TeamPCP / Mini Shai-Hulud** supply-chain operation is actively compromising **hundreds of packages**, exposing **downstream developers** to **malware delivery** and **creden...

Open Happening

Mistral AI internal repositories and source code leak

Data Leak
First: 15.05.2026 01:50 Last: 15.05.2026 01:50 Sources 1

How related: TeamPCP claims to have stolen nearly 5 gigabytes “of internal repositories and source code” that Mistral uses for training, fine-tuning, benchmarking, model delivery, and inference in experiments and future projects.

About this happening: A **TeamPCP** forum post claims **Mistral AI** source code and internal repositories were stolen and are now being offered for sale, creating a risk of public release. The alleged...

Open Happening

OpenAI hit by cyberattack

Incident
First: 14.05.2026 22:07 Last: 14.05.2026 22:07 Sources 1

About this happening: OpenAI confirmed **two employees' devices** were breached, giving attackers access to a limited set of internal source code repositories and forcing a precautionary rotation of **...

Open Happening

TanStack hit by network compromise

Incident
First: 12.05.2026 17:45 Last: 12.05.2026 17:45 Sources 1

About this happening: **TanStack** was hit by a **package compromise** on **May 11, 2026**, when attackers published **84 malicious versions** across **42 @tanstack/* packages** and abused the release...

Latest development: 21.05.2026 11:00

On May 17, 2026, Grafana Labs said an unauthorized attacker had downloaded its codebase after accessing the firm's GitHub environment, and the company later said additional internal operational information and business contact names and email addresses were taken from its GitHub repositories; Grafana Labs said there was no indication that customer production systems or the Grafana Cloud platform were compromised.

Open Happening

Timeline

  1. 15.05.2026 01:50 2 articles · 13d ago

    Mistral AI codebase compromise and TeamPCP leak threat

    Initial Disclosure

    Mistral AI confirmed that a codebase management system was compromised after the Mini Shai-Hulud software supply-chain attack, with stolen CI/CD credentials and legitimate workflows used to contaminate some SDK packages for a brief period; the company said the impacted data was not part of the core code repositories and that hosted services, managed user data, and research and testing environments were not compromised. TeamPCP separately threatened to leak Mistral AI source code unless a buyer was found, claiming nearly 5 gigabytes of internal repositories and source code across nearly 450 repositories and asking $25,000 BIN, while OpenAI separately said the TanStack campaign affected two employees and led it to rotate exposed code-signing certificates.

    Show sources
    Open in new tab