Ai Agent At The Wheel How An Attacker Used Llms To Move From A Cve To An Internal Database In 4 Pivots
Source: www.sysdig.com
Published:
<p>On May 10, 2026, the Sysdig Threat Research Team (TRT) observed an intrusion driven by a large language model (LLM) agent in its post-exploitation phase. The attacker compromised an internet-reachable marimo notebook via CVE-2026-39987 , extracted two cloud credentials from the compromised host,