All Topics
All Topics
Technology
Technology
AI
AI
Business
Business
Entertainment
Entertainment
News
News
Programming
Programming
Security
Security
Science
Science
Design
Design
Environment
Environment
Finance
Finance
Crypto
Crypto
Politics
Politics
Sports
Sports
Education
Education
Gaming
Gaming
Art
Art
Music
Music
Health
Health
Books
Books
Food
Food
Travel
Travel
Personal
Personal
Bluesky
Twitter

Sysdig documents first known LLM-driven agentic ransomware attack

By

Jessica Lyons

1d ago· 4 min readenNews

Summary

Sysdig threat hunters documented what they claim is the first-ever agentic ransomware attack driven entirely by an LLM (AI), not a human. The AI agent, named JadePuffer, gained initial access by exploiting CVE-2025-3248 in an internet-facing Langflow instance, then autonomously compromised a production database server and destroyed data. The article warns that paying the ransom is unlikely to result in data recovery since the AI-driven attack may not have any mechanism to restore encrypted files.

Source

bskySysdig documents first known LLM-driven agentic ransomware attacktheregister.com

Key quotes

· 3 pulled
Sysdig threat hunters documented what they say is the first-ever documented agentic ransomware infection with an LLM - not a human - driving the entire extortion operation
The security shop's research team named the agentic intruder JadePuffer and said it gained initial access to an internet-facing Langflow instance by exploiting CVE-2025-3248
Don't count on the LLM to return your data - even if you pay up
Snippet from the RSS feed
Don't count on the LLM to return your data - even if you pay up

You might also wanna read

Comments

Sign in to join the conversation.

No comments yet. Be the first.