Experts warn of the 'first documented case of agentic ransomware' — dangerous JADEPUFFER attack run…
- The first agentic ransomware attack has been dubbed JADEPUFFER by researchers at Sysdig
- Threat exploited a known vulnerability, adapted to obstacles, and targeted an Alibaba Nacos
- Unfortunately for victims, paying up means nothing, as JADEPUFFER fails to back up the data
Has ransomware become self-aware? Sysdig researchers have analyzed an attack on an internet-facing Langflow instance, and discovered what they believe to be the first ransomware infection driven not by a human, but by AI.
As the attack progressed via a vulnerability, it accessed a server, removed data, overcame challenges, and phoned home regularly – all controlled not by a remote operator, but by a large language model (LLM).
Dubbed “JADEPUFFER” the attack seems to point to the direction of travel for extortion-based cybercrime -- if not for the entire sector, then certainly for the cybercrime-as-a-service (CaaS) market. As highlighted in Sysdig’s conclusion: “It’s a marker of where extortion tradecraft...
Copyright of this story solely belongs to techradar.com. To see the full text click HERE