An exposed attack server led Lexfo to three Microsoft 365 phishing operations using Evilginx and device code abuse to capture ...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Cloud security firm Sysdig has documented what it describes as the first known case of ransomware executed by an AI agent — an extortion operation, dubbed JadePuffer, in which an AI agent handled the ...
JadePuffer, the first known 'agentic ransomware', uses an AI agent to run attacks end-to-end and adapt in real time, ...
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
Sysdig says JADEPUFFER is the first known agentic ransomware attack, showing how AI agents could automate familiar security ...
a laptop screen with a webpage of the IT Army of Ukraine group of volunteer hackers. The IT Army of Ukraine first set up in the wake of Russia's devastating attack, and has since hugely grown in ...
Federal civilian agencies have until Thursday to patch four actively exploited vulnerabilities — including one in Langflow, marking the first time an AI agent orchestration platform has appeared in ...
They're not bad; they're just prompted that way. Sysdig threat hunters documented what they say is the first-ever documented ...