TeamPCP Claims Sale of Mistral AI Repositories Following Mini Shai-Hulud Supply Chain Attack

The threat actor TeamPCP has claimed to be selling alleged Mistral AI repositories on a hacker forum following an attack dubbed Mini Shai-Hulud. The attack targeted the npm and PyPI ecosystems, which are critical package registries for JavaScript and Python software supply chains. No specific dates, technical indicators, or CVE IDs were provided in the report. The incident suggests a potential supply chain compromise, though the exact impact on Mistral AI or downstream users remains unverified. The sale of repositories implies unauthorized access to proprietary or sensitive AI-related code.