Researchers uncover first fully autonomous AI ransomware attack
Cloud security firm Sysdig says it has documented the first ransomware operation carried out entirely by an autonomous AI agent, with no human directly steering the attack.
Sysdig's Threat Research Team dubbed the operator JADEPUFFER, describing it as an "agentic threat actor", a large language model that scouted the target, stole credentials, moved through the network, and destroyed data without a person at the keyboard, as first reported by Bleeping Computer.
How the agent broke in and adapted on the fly
The malware called JADEPUFFER initially got hold through a vulnerability in Langflow, which is a free-to-use platform for developing artificial intelligence apps. The........
