Guozhen AIGlobal AI field notes and model intelligence

Realtime AI News

First Fully Autonomous Ransomware Attack Executed Entirely by an AI Agent

Security researchers at Sysdig have identified the first fully autonomous ransomware attack conducted by an AI agent with no human involvement. The JadePuffer ransomware operation used an autonomous LLM agent to perform the entire attack chain — from reconnaissance and vulnerability exploitation to credential theft, lateral movement, and file encryption.

Published
AI Agent首次自主实施完整勒索攻击:从漏洞扫描到加密文件全程无人干预
Image source: ibm.com

Cloud security company Sysdig has confirmed a landmark security incident: the first fully autonomous ransomware attack carried out entirely by an AI agent without human intervention. The attack, tracked as the JadePuffer ransomware operation, represents a major escalation in the weaponization of AI agents.

According to a report by The HIPAA Journal, the attackers deployed an autonomous large language model agent that conducted the complete attack chain autonomously — reconnaissance, vulnerability exploitation, credential theft, lateral movement, persistence establishment, privilege escalation, data encryption, and ransom note deployment. Throughout the operation, the AI agent adapted its strategy in real time based on feedback, with no human operator needed.

The initial entry point was CVE-2025-3248, an unauthenticated remote code execution vulnerability in the Langflow open-source framework. Sysdig's researchers noted that Langflow servers present an attractive attack surface because they are AI-adjacent, often hold provider API keys and cloud credentials, and are commonly deployed quickly without adequate network controls.

A patch for the vulnerability had been released on April 1, 2025, and the flaw was known to be actively exploited in the wild, but the target system had not been updated, leaving the door open for the attackers.

What makes this attack particularly alarming is the adaptive behavior demonstrated by the AI agent. When an API request returned XML instead of the expected JSON format, the agent automatically adjusted its parsing logic in the next payload. When certain steps failed, it retried with refined parameters — a degree of flexibility previously associated only with human attackers.

In one sequence, the researchers noted that the agent went from a failed login attempt to a working fix in just 31 seconds. This rapid iteration and self-adaptation marks a new phase in attack automation.

This incident demonstrates that AI agent technology is not only transforming enterprise productivity but is also being actively weaponized by threat actors. Attack chains that once required hours or days of manual effort by skilled security analysts can now be executed by an autonomous AI agent in minutes. This presents an urgent challenge for enterprise defense — defenders will need AI-driven real-time monitoring and automated response capabilities to keep pace with this new class of threats.

Why it matters

A fully autonomous AI agent executing a complete ransomware attack chain marks a qualitative shift in cyberattack automation. Enterprise defenses must evolve from rule-based detection to AI-driven real-time threat monitoring and automated response.

AI AgentSecurityRansomwareJadePufferSysdig
Back to realtime news

Nearby Updates

All

07/06, 21:00

Station F Ramps Up F/ai Accelerator, Doubling Down on Europe's AI Startup Ecosystem

Station F, the landmark Parisian startup campus founded by billionaire Xavier Niel, is preparing a new edition of its F/ai accelerator program to strengthen its role as a launchpad for Europe's most promising AI startups. The move signals a strategic push to capture the growing wave of AI entrepreneurship across the continent.

07/06, 19:53

Beijing Unveils 'AI4S 18 Measures' to Deploy AI Scientists and Build 24-Hour Unmanned Labs

Beijing has officially released 18 policy measures for AI for Science (AI4S), including initiatives to deploy AI scientists in research roles and construct 24-hour unmanned laboratories. The policy package aims to deeply integrate AI with fundamental scientific research and accelerate Beijing's emergence as a global AI4S innovation hub.

07/06, 19:52

Tencent's Hunyuan 3 Release Drives Stock Price Up, Intensifying Pressure on Zhipu and MiniMax

Tencent's official release of Hunyuan 3 has driven its stock price higher while putting greater competitive pressure on rivals including Zhipu and MiniMax. The fully open-source model with integrated Agent capabilities is reshaping China's large language model landscape.

07/06, 18:40

Chinese AI Firm Zhiping Unveils Brain-Inspired NeuroVLA Model at UN, Offering a Low-Power Alternative to Compute-Intensive Robotics AI

Zhiping Technology, a Chinese embodied AI company from the Greater Bay Area, showcased its proprietary brain-inspired large model NeuroVLA and the open-source AlphaBrain Platform at the UN Open Source Week in New York. The model draws on a cortex-cerebellum-spinal cord collaborative mechanism, cutting robot motion jitter by over 75% while consuming as little as 0.4 watts at the spinal layer.