Sysdig Uncovers First Documented Agentic Ransomware Operation
Security researchers at Sysdig have documented what they believe is the first documented case of an AI agent running a ransomware operation from end to end.
Dubbed JADEPUFFER, the operation used a large language model (LLM) to automate an attack that began with the exploitation of an internet-facing Langflow instance and ended in destructive database extortion.
Sysdig’s research describes an AI-driven campaign that adapted to failures, harvested credentials, searched for sensitive data, moved toward its intended target, and attacked a production database server.
The attackers initially exploited CVE-2025-3248, a missing-authentication vulnerability in Langflow’s code validation endpoint that allows unauthenticated remote code execution. Once inside, JADEPUFFER enumerated the compromised host and searched for LLM provider API keys, cloud credentials, cryptocurrency wallets, seed phrases, database credentials, and configuration files.
The operation then dumped Langflow’s PostgreSQLdatabase, scanned internal systems, and targeted a separate production database server. According to Sysdig, the agent connected...
Copyright of this story solely belongs to informationsecuritybuzz.com. To see the full text click HERE