惯性聚合 高效追踪和阅读你感兴趣的博客、新闻、科技资讯
阅读原文 在惯性聚合中打开

推荐订阅源

让小产品的独立变现更简单 - ezindie.com
让小产品的独立变现更简单 - ezindie.com
Microsoft Azure Blog
Microsoft Azure Blog
大猫的无限游戏
大猫的无限游戏
月光博客
月光博客
V
V2EX
PCI Perspectives
PCI Perspectives
Latest news
Latest news
博客园 - 三生石上(FineUI控件)
C
CERT Recently Published Vulnerability Notes
W
WeLiveSecurity
Last Week in AI
Last Week in AI
奇客Solidot–传递最新科技情报
奇客Solidot–传递最新科技情报
P
Palo Alto Networks Blog
T
The Exploit Database - CXSecurity.com
K
KPMG report finds enterprise disconnect between AI and its ROI | CIO
cs.AI updates on arXiv.org
cs.AI updates on arXiv.org
WordPress大学
WordPress大学
V
Vulnerabilities – Threatpost
H
Heimdal Security Blog
Attack and Defense Labs
Attack and Defense Labs
cs.CV updates on arXiv.org
cs.CV updates on arXiv.org
Hacker News: Ask HN
Hacker News: Ask HN
博客园 - 叶小钗
V
Visual Studio Blog
Jina AI
Jina AI
P
Proofpoint News Feed
罗磊的独立博客
SecWiki News
SecWiki News
J
Java Code Geeks
freeCodeCamp Programming Tutorials: Python, JavaScript, Git & More
L
LINUX DO - 热门话题
Security Archives - TechRepublic
Security Archives - TechRepublic
The Hacker News
The Hacker News
Hugging Face - Blog
Hugging Face - Blog
N
News and Events Feed by Topic
NISL@THU
NISL@THU
T
Tailwind CSS Blog
T
Tenable Blog
Recent Commits to openclaw:main
Recent Commits to openclaw:main
Recent Announcements
Recent Announcements
H
Hacker News: Front Page
Exploit-DB.com RSS Feed
Exploit-DB.com RSS Feed
T
Tor Project blog
宝玉的分享
宝玉的分享
Help Net Security
Help Net Security
S
Security Affairs
Microsoft Security Blog
Microsoft Security Blog
Google DeepMind News
Google DeepMind News
F
Fortinet All Blogs
G
GRAHAM CLULEY

Truesec

Russian Intelligence Targets SOHO Routers - Truesec Cyber Warfare in the Iran War - Truesec Organized Cybercrime Merging with Other Crime - Truesec The Fortibleed Campaign: Truesec's Experience Fortibleed: Truesec's Experience Supply Chain Attack Compromising Arch Linux AUR Packages with Infostealer and Rootkit - Truesec FortiNet SSO Vulnerability CVE-2025-59718 and CVE-2025-59719 Leading to Full System Compromise - Truesec Critical Vulnerabilities in Ivanti Sentry Allows Code Execution as Root (CVE-2026-10520 & CVE-2026-10523) Typosquatting: When Your Domain Is Used Against You AI in Cybersecurity: Separating Operational Reality from Speculation Compromised @redhat-Cloud-Services Npm Packages Distribute Credential-Stealing Worm GitHub Hacks Highlights Need for Repository Security Installation of a Syslog Log Collector Critical Cisco Secure Workload Vulnerability Allows Unauthenticated Site Admin Access (CVE-2026-20223) Securing IT, OT, and IoT When the Digital Meets the Physical Russia Rolls Out Surveillance Through State-Backed “Super App” MAX Device Code Phishing via Fake File-Sharing Invitation Active Exploitation of PAN‑OS Authentication Portal RCE - Truesec Windows Client Security Baselines: When Assumptions Meet Incident Response Reality - Truesec Entra ID Password Protection: From “P@ssw0rd” to Protected GitHub Under Attack: How Small Exposures Snowball into Large‑Scale Compromises European Risks Linked to the U.S. – Iran Conflict Mythos: What It Actually Means and What It Does Not Russian Espionage Campaign Targets Home Routers How Nordic Organizations Must Adjust Their Cybersecurity to a Changing Operating Environment Critical Vulnerability in “Ninja Forms – File Upload” WordPress Plugin (CVE-2026-07409) Iranian APT Target US Critical Infrastructure Remote Access – Is VPN the Almighty Solution? Malicious Axios Packages Published to npm in New Supply Chain Compromise RCE Vulnerability in F5 BIG-IP APM (CVE-2025-53521) No Further Increase in Iranian Cyber Operations Malicious PyPI Package – LiteLLM Supply Chain Compromise Dutch Intelligence Warns of Russian Campaign Against Signal and Whatsapp Users Multiple Vulnerabilities, One Critical, in Ubiquiti UniFi Network Application
AI Used in Ransomware Attack
jennie mattar · 2026-07-03 · via Truesec

Threat Insight

Researchers have found what they believe is the first ransomware attack carried out from start to finish by an AI agent. An operator they dubbed “Jadepuffer” used an LLM to handle most of the attack sequence, including gaining access, stealing credentials, moving laterally, and finally encrypting the victim’s production database.

AI ATTACK CYBER

The initial attack vector was the exploitation of a known missing-authentication vulnerability, CVE-2025-3248, in Langflow, an open-source tool for building AI apps and agent workflows. Once inside, the agent moved quickly and cleaned up after itself. It mapped the machine, then searched it for secrets: API keys for AI services such as OpenAI, Anthropic, DeepSeek, and Gemini, cloud credentials for Chinese providers such as Alibaba and Tencent, alongside AWS, Google, and Azure crypto wallet keys and database logins.

It then pivoted to a separate, internet-facing server running a MySQL database and Alibaba’s Nacos, a configuration and service directory common in microservices environments. The threat actor logged into the database as root. They then encrypted all 1,342 Nacos settings, dropped the original tables, and left a ransom note demanding Bitcoin with a Proton Mail contact.

The threat actor generated a random encryption key, printed it to the screen once, and never saved or sent it anywhere, essentially making it impossible to decrypt the impacted data.

The clearest sign that the attack involved the use of AI was the code itself. The attack payloads were full of plain-English notes explaining why each step was being taken: a running commentary that a human hacker would likely never bother to write, but that a model may produce by default.

The attacker also responded very quickly to problems as they arose. In one case, it went from a failed login to a correct, multi-step fix in 31 seconds, diagnosing the exact cause instead of blindly retrying, suggesting that an AI agent may have been involved. [1]
Assessment

There is not enough information to determine whether this attack was indeed conducted solely by an AI agent, as the researchers claim, or whether it was carried out by a human operator using an AI tool and evaluating each step before issuing new instructions to the AI.

The attack did not display any particular sophistication, quite the opposite. The vulnerability exploited was over a year old, and the ransomware encryption was poorly implemented, meaning the victim would not have been able to recover the files even if they had paid the ransom. This is a critical mistake for a serious ransomware operator.

Using AI to automate part or all of the attack chain is also more of an evolution than a revolution in ransomware. Some ransomware groups that specialize in attacking smaller victims used scripts to automate their attacks long before AI became widely used. The smaller the environments, the easier it is to automate attack sequences. The cybercriminals’ business model relies on a large volume of victims and can remain profitable even if many attacks fail.

Nevertheless, the attack shows how the use of AI can lead to faster, if still unsophisticated, attacks that give victims less time to react.

References

[1] https://www.sysdig.com/blog/jadepuffer-agentic-ransomware-for-automated-database-extortion