Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Mistral AI internal repositories and source code leak

Data Leak
First reported
Last updated
Happening score
H score 26
1 unique sources, 1 articles

Summary

Hide ▲

A TeamPCP forum post claims Mistral AI source code and internal repositories were stolen and are now being offered for sale, creating a risk of public release. The alleged haul covers nearly 450 repositories and about 5 gigabytes of internal code used across training, benchmarking, model delivery, and inference experiments. The actors reportedly set a $25,000 asking price and said they would leak the data if no buyer appears within a week. If the claim is genuine, the exposure could reveal sensitive development assets and support follow-on abuse of Mistral's software supply chain.

Related Happenings

GitHub data exposed after GitHub breach

Data Leak
First: 20.05.2026 11:14 Last: 20.05.2026 11:14 Sources 1

About this happening: GitHub confirmed **exfiltration** of **internal repositories**, making private code and related content potentially available to outsiders. Attackers on the **Breached cybercrime...

Open Happening

GitHub internal repositories private-code leak claim

Data Leak
First: 20.05.2026 08:08 Last: 20.05.2026 08:08 Sources 1

About this happening: GitHub is facing a claimed leak of **internal repositories** after **TeamPCP** said it had access to about **4,000 private-code repos** and tried to sell samples. The alleged expo...

Latest development: 21.05.2026 17:45

A malicious version of Nx Console 18.95.0 was uploaded to Visual Studio Marketplace and Open VSX on May 18, fetched an obfuscated payload, and harvested secrets from ~/.vault-token, /etc/vault/token, .npmrc, ghp_/gho_/ghs_ tokens, AWS metadata, and other local sources; GitHub said the poisoned VS Code extension led to unauthorized access to about 3800 internal repositories.

Open Happening

Grafana Labs source code leak and extortion demand

Data Leak
First: 19.05.2026 12:15 Last: 19.05.2026 12:15 Sources 1

About this happening: The **Grafana Labs** codebase was **downloaded from its GitHub environment**, creating a risk that proprietary source code could be **released or misused**. The company said **no...

Open Happening

Mistral AI hit by network compromise

Incident
First: 15.05.2026 01:50 Last: 15.05.2026 01:50 Sources 1

How related: Mistral AI confirmed that hackers compromised a codebase management system after the Mini Shai-Hulud software supply-chain attack.

About this happening: Mistral AI disclosed a **codebase management system compromise** tied to the **Mini Shai-Hulud** supply-chain attack, and the intrusion briefly contaminated some **SDK packages**....

Open Happening

Shai-Hulud supply-chain campaign spreading via stolen CI/CD credentials

Campaign
First: 12.05.2026 14:29 Last: 12.05.2026 14:29 Sources 1

About this happening: The **Shai-Hulud** **supply-chain campaign** remains active across **npm**, **PyPI**, and **Composer**, with the latest reporting tying **TeamPCP** to both a claimed **GitHub inte...

Open Happening

Timeline

  1. 15.05.2026 01:50 2 articles · 12d ago

    TeamPCP threatens to sell Mistral AI repositories

    Initial Disclosure

    TeamPCP claims it stole nearly 5 gigabytes of Mistral AI internal repositories and source code, says the data covers nearly 450 repositories, and offers the set for $25,000 while threatening to leak the files publicly within a week if no buyer appears. Mistral AI says hackers compromised a codebase management system after the Mini Shai-Hulud supply-chain attack, that some SDK packages were briefly contaminated, and that forensic review found the impacted data was not part of the core code repositories or its hosted services, managed user data, or research and testing environments.

    Show sources
    Open in new tab