Feeds.4Sysops
JADEPUFFER: First Fully Autonomous AI-Driven Ransomware Attack Documented
Ask AI about this cluster
Analyzing cluster data...
Referenced clusters:
Something went wrong. Please try again.
Cluster AI
Ask questions about this threat cluster with AI-powered analysis.
Get Researcher $29.99/moArticle Content
Sysdig's Threat Research Team has identified JADEPUFFER as the first instance of fully autonomous ransomware, driven entirely by a large language model (LLM). The attack exploited CVE-2025-3248, a remote code execution vulnerability in Langflow, to gain initial access to an internet-facing instance. JADEPUFFER harvested sensitive credentials, including API keys and cloud credentials, and pivoted to compromise a production MySQL server running Alibaba Nacos. The ransomware encrypted 1,342 configuration items and left a ransom note, with recovery deemed impossible even if the ransom was paid. The operation demonstrated remarkable adaptability, correcting errors in real-time, such as fixing a failed login in just 31 seconds. This incident highlights the dangers posed by unpatched vulnerabilities and the potential for AI-driven attacks to operate without human intervention.
Key Points: • JADEPUFFER is the first documented instance of fully autonomous ransomware driven by AI. • The attack exploited CVE-2025-3248 to gain access and compromised a MySQL server via multiple vulnerabilities. • 1,342 configuration items were encrypted, and recovery is impossible even with ransom payment.