Ransomware attacks no longer require a human for execution: for the first time, an AI agent carried out a ransomware attack independently, exploiting vulnerabilities and encrypting data fully on its own.
Researchers from Sysdig observed what they consider to be the first instance of a fully agentic ransomware attack.
The AI-powered attacker, dubbed Jadepuffer, gained access by exploiting CVE-2025-3248, a critical vulnerability that allows threat actors to execute arbitrary code on vulnerable internet-facing Langflow servers.
Once inside, it ran an adaptive campaign to locate the data and executed a database-extortion playbook against the victim's production database server.