Researchers Uncover First Fully Agentic AI Ransomware Attack

https://hothardware.com/contentimages/NewsItem/71046/content/16x9_2133x1200_highres-jadepuffer-agentic-ransomware-news.jpg

Nefarious actors are becoming adept at deploying Large Language Models (LLMs) in their malware campaigns. Case in point, the threat research team at security firm Sysdig has discovered what looks to be the first instance of an attack using agentic ransomware. The researchers say it’s a “complete extortion operation driven end-to-end” by an LLM.

This malicious software, which has been named Jadepuffer, leverages a vulnerability in the Longflow framework that’s used by developers who create software using LLMs. Once the malware gains access to the system it begins to search for valuable data that’s often found in AI assisted development environments, such as API keys and credentials, that can be used to compromise other systems used by victims for deploying ransonmware.

Something that stood out to the researchers about Jadepuffer is that the malware is capable of adapting in real time. It initially failed to create a new account...

Copyright of this story solely belongs to hothardware.com. To see the full text click HERE

Read more

https://assets.bwbx.io/images/users/iqjWHBFdfxIU/i9LKne21LdZU/v2/1200x800.jpg

Sources: the US considers housing the Strategic Bitcoin Reserve at Commerce instead of Treasury amid concerns over Treasury's legal authority to manage it

Sponsor Posts Fast, affordable law for startups — Soxton automates startup legal so founders can move faster and sleep better. We handle incorporation, advisor, employment and commercial contracts. Join the waitlist for early access! Stop vibe coding analytics — Equals AI turns questions about your business into auditable spreadsheet models and dashboards.