Experts warn of the 'first documented case of agentic ransomware' — dangerous JADEPUFFER attack run…

https://cdn.mos.cms.futurecdn.net/GJ8T4oA8G7TYJwTEhkwJAF-2560-80.jpg
  • The first agentic ransomware attack has been dubbed JADEPUFFER by researchers at Sysdig
  • Threat exploited a known vulnerability, adapted to obstacles, and targeted an Alibaba Nacos
  • Unfortunately for victims, paying up means nothing, as JADEPUFFER fails to back up the data

Has ransomware become self-aware? Sysdig researchers have analyzed an attack on an internet-facing Langflow instance, and discovered what they believe to be the first ransomware infection driven not by a human, but by AI.

As the attack progressed via a vulnerability, it accessed a server, removed data, overcame challenges, and phoned home regularly – all controlled not by a remote operator, but by a large language model (LLM).

Dubbed “JADEPUFFER” the attack seems to point to the direction of travel for extortion-based cybercrime -- if not for the entire sector, then certainly for the cybercrime-as-a-service (CaaS) market. As highlighted in Sysdig’s conclusion: “It’s a marker of where extortion tradecraft...

Copyright of this story solely belongs to techradar.com. To see the full text click HERE

Read more