{"data":{"id":"4d412058-dade-48db-9af3-7d6c4b22f4d2","title":"JadePuffer ransomware used AI agent to automate entire attack","summary":"Researchers discovered JadePuffer, believed to be the first ransomware attack fully controlled by an autonomous AI agent (a program that acts independently to complete tasks). The AI agent exploited a vulnerability in Langflow (a framework for building AI applications) to gain initial access, then automatically performed reconnaissance, stole credentials, moved through the network, and encrypted data while adapting to failures in real time, much like a human attacker would.","solution":"The vendor fixed CVE-2025-3248 on April 1, 2025. Additionally, CISA (Cybersecurity and Infrastructure Security Agency) tagged this vulnerability as exploited in attacks, warning organizations to patch internet-exposed endpoints.","labels":["security","safety"],"sourceUrl":"https://www.bleepingcomputer.com/news/security/jadepuffer-ransomware-used-ai-agent-to-automate-entire-attack/","publishedAt":"2026-07-04T14:16:38.000Z","cveId":null,"cweIds":null,"cvssScore":null,"cvssSeverity":null,"severity":"high","attackType":["supply_chain","model_theft","denial_of_service"],"issueType":"news","affectedPackages":null,"affectedVendors":["LangChain"],"affectedVendorsRaw":["Langflow","LangChain ecosystem","Alibaba Nacos","MinIO","PostgreSQL","MySQL"],"classifierModel":"claude-haiku-4-5-20251001","classifierPromptVersion":"v3","cvssVector":null,"attackVector":null,"attackComplexity":null,"privilegesRequired":null,"userInteraction":null,"exploitMaturity":null,"epssScore":null,"patchAvailable":null,"disclosureDate":"2026-07-04T14:16:38.000Z","capecIds":null,"crossRefCount":0,"attackSophistication":"advanced","impactType":["confidentiality","integrity","availability"],"aiComponentTargeted":"agent","llmSpecific":true,"classifierConfidence":0.92,"researchCategory":null,"atlasIds":null}}