Black & White Path
Jul 10, 2026 · Information Security
JadePuffer: Inside the World’s First Fully Agentic AI Ransomware
JadePuffer, the first ransomware fully driven by a large language model, exploited a CVE‑2025‑3248 flaw in exposed Langflow instances to gain initial access, autonomously performed reconnaissance, credential theft, lateral movement, persistence, and encrypted MySQL/Nacos data, demonstrating rapid self‑healing and highlighting new defensive challenges.
AI ransomwareCloud securityLLM-driven attack
0 likes · 18 min read
