An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
AI agent executed JadePuffer ransomware attack autonomously, but humans chose victim and set up infrastructure.
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
has documented what it says is the first ransomware operation carried out from start to finish by an autonomous artificial ...
An AI agent carried out the technical execution of a real-world ransomware attack for the first known time, but new details ...
They're not bad; they're just prompted that way. Sysdig threat hunters documented what they say is the first-ever documented ...
Sysdig says JADEPUFFER is the first known agentic ransomware attack, showing how AI agents could automate familiar security ...
Autonomous AI agents are no longer theoretical cyber risks as new research shows a large language model executing an end-to-end ransomware campaign, highlighting the urgency of patching known ...
A newly identified ransomware campaign named JadePuffer represents a significant advancement in cyberattacks, as it operates ...
Security firm Trusteer uncovered a 100,000-strong botnet swiping banking credentials, credit card information and other data from Windows users.
Sysdig says JADEPUFFER may be the first agentic ransomware case, exposing how AI agents can turn old credential failures into database destruction. JADEPUFFER is a warning about exposed AI ...