JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Sysdig's JadePuffer case is billed as the first ransomware attack planned and executed end to end by an AI agent, with no human directing it.
Autonomous AI agents are no longer theoretical cyber risks as new research shows a large language model executing an end-to-end ransomware campaign, highlighting the urgency of patching known ...
Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your ...
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
Researchers at Sysdig say they have observed, for the first time, a ransomware attack carried out almost entirely by an AI agent. According to the ...
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Researchers from security firm Trend Micro warn that a critical remote code execution vulnerability patched in April in the Langflow AI agent framework is being exploited to deploy botnet malware. The ...
When creating in-house applications or automation tools that utilize AI, one might use ' LangChain,' a powerful Python-based library that connects APIs, databases, and various AI services as ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results