--- title: "MercorClaims timeline ties the Mercor incident to the LiteLLM compromise" description: "MercorClaims has published a dated timeline placing the Mercor incident next to the underlying compromise of the open-source LiteLLM project, citing TechCrunch's March 31, 2026 reporting and Mercor's own statements." canonical_url: "https://alpha.mercor.instalaw.io/press/mercorclaims-timeline-links-incident-to-litellm" last_updated: "2026-04-06" --- # MercorClaims timeline ties the Mercor incident to the LiteLLM compromise **Category:** Investigation **Published:** April 6, 2026 **Updated:** April 6, 2026 MercorClaims has published a dated timeline placing the Mercor incident next to the underlying compromise of the open-source LiteLLM project, citing TechCrunch's March 31, 2026 reporting and Mercor's own statements. ## Highlights - Anchors the Mercor incident to the LiteLLM compromise using public reporting. - Places Mercor's own statements next to outside confirmation, on one dated timeline. - Sets up readers to evaluate follow-on disclosures from other organizations downstream of LiteLLM. ## Moving from “a breach” to “a supply-chain breach” Early coverage of the incident framed it as a Mercor-specific event. Public reporting, most prominently by TechCrunch on March 31, 2026, reframed it: Mercor was affected as part of a broader compromise of the open-source LiteLLM project used by many organizations in the AI industry. The timeline makes that link readable. Each entry carries a date and a citation, so readers can see when the narrative shifted and on what evidence. ## Why the LiteLLM link matters LiteLLM is infrastructure glue: a proxy and library that sits between applications and large-language-model providers. A compromise of that kind of component doesn't stop at one company — it reaches every organization that uses it. Reading the Mercor incident through that lens changes what readers should expect next: more organizations may be drawn into the story, not fewer. - The upstream cause is outside Mercor's codebase. - Other organizations that rely on LiteLLM may surface disclosures of their own. - Attribution and scope are still moving as reporting continues. ## About MercorClaims MercorClaims is an informational website focused on helping visitors follow the Mercor data breach through publicly available information, source material, and future AI-assisted tools. MercorClaims is not a law firm and does not provide legal advice. ## Sitemap See the full [sitemap](/sitemap.md) for all pages.