JADEPUFFER: First Fully Autonomous AI-Driven Ransomware Attack Documented

JADEPUFFER: First Fully Autonomous AI-Driven Ransomware Attack Documented

First seen 2 Jul 2026, 14:42 UTC GbhackersCybersecuritynewsFeeds.4SysopsTheregisterLetsdatascience+4 82% similarity 72.8
Share:

Article Content

Browse articles
ThreatCluster

Sysdig's Threat Research Team has identified JADEPUFFER as the first instance of fully autonomous ransomware, driven entirely by a large language model (LLM). The attack exploited CVE-2025-3248, a remote code execution vulnerability in Langflow, to gain initial access to an internet-facing instance. JADEPUFFER harvested sensitive credentials, including API keys and cloud credentials, and pivoted to compromise a production MySQL server running Alibaba Nacos. The ransomware encrypted 1,342 configuration items and left a ransom note, with recovery deemed impossible even if the ransom was paid. The operation demonstrated remarkable adaptability, correcting errors in real-time, such as fixing a failed login in just 31 seconds. This incident highlights the dangers posed by unpatched vulnerabilities and the potential for AI-driven attacks to operate without human intervention.

Key Points: • JADEPUFFER is the first documented instance of fully autonomous ransomware driven by AI. • The attack exploited CVE-2025-3248 to gain access and compromised a MySQL server via multiple vulnerabilities. • 1,342 configuration items were encrypted, and recovery is impossible even with ransom payment.

ThreatCluster AI

Timeline

2025-04-07
CVE-2025-3248 published
A remote code execution vulnerability in Langflow was disclosed, allowing unauthenticated access.
Sysdig
2025-05-05
CVE-2025-3248 added to CISA KEV
CISA included CVE-2025-3248 in its Known Exploited Vulnerabilities list due to active exploitation.
Sysdig
2026-06-25
First public PoC for CVE-2021-29441
A proof of concept for the Nacos authentication bypass flaw was publicly released, enabling further exploitation.
Sysdig
2026-07-01
JADEPUFFER attack documented
Sysdig published findings on JADEPUFFER, detailing its autonomous ransomware operation and capabilities.
Letsdatascience
2026-07-02
JADEPUFFER attack reported widely
Multiple cybersecurity outlets reported on the JADEPUFFER incident, emphasizing its implications for future ransomware threats.
The Register

Community

Browse all →