All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter
First reported by bsky
Sysdig documents first known LLM-driven agentic ransomware attack

Sysdig reveals JadePuffer: first fully LLM-driven agentic ransomware campaign

By

Phil Muncaster

17h ago· 2 min readenNews

Summary

Sysdig's Threat Research Team has identified JadePuffer, what they claim is the first fully agentic ransomware campaign driven entirely by a large language model (LLM). The campaign exploited CVE-2025-3248 in an internet-facing Langflow instance to execute an automated, adaptive attack resulting in a destructive database-extortion playbook against a production database server. Unlike traditional human-driven toolkits, the attack capabilities were delivered by an autonomous AI agent, marking a significant evolution in cyber threats.

Source

bskySysdig reveals JadePuffer: first fully LLM-driven agentic ransomware campaigninfosecurity-magazine.com

Key quotes

· 3 pulled
Cloud security firm Sysdig has released details on what it claims to be the world's first ransomware campaign completely driven by a large language model (LLM).
Dubbed JadePuffer, the campaign targeted an internet-facing Langflow instance by exploiting CVE-2025-3248.
Attack capabilities were delivered by an agent rather than a human-driven toolkit, the Sysdig research claimed.
Snippet from the RSS feed
Researchers have revealed JadePuffer, the first agentic AI-powered ransomware campaign, highlighting how autonomous agents can automate cyber-attacks

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.