Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
has documented what it says is the first ransomware operation carried out from start to finish by an autonomous artificial ...
JadePuffer, the first known 'agentic ransomware', uses an AI agent to run attacks end-to-end and adapt in real time, ...
Security vendor Sysdig has identified the first real-world case of an agentic ransomware attack, attributed to a financially motivated group called JadePuffer. The AI agent autonomously adapted to ...
A newly disclosed use-after-free in the Linux kernel's epoll code, CVE-2026-46242, lets an unprivileged user get root on ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
CVE-2026-20896 lets reachable Gitea Docker containers trust spoofed X-WEBAUTH-USER headers when reverse proxy auth is enabled ...
How I stopped a massive WordPress spam attack with 4,700 lines of code in two days - thanks to Codex and Claude ...
Drug regulators have introduced stricter rules to eliminate duplicate and deceptively similar medicine brand names. The new First-to-Register policy and mandatory Sugam portal verification aim to ...
Sysdig's JadePuffer case is billed as the first ransomware attack planned and executed end to end by an AI agent, with no human directing it.
A practitioner's breakdown of the CSRF attack: how the forged request works, two documented exploits, a manual test, and the ...