Nefarious actors are becoming adept at deploying Large Language Models (LLMs) in their malware campaigns. Case in point, the threat research team at security firm Sysdig has discovered what looks to be the first instance of an attack using agentic ransomware. The researchers say it’s a “complete extortion operation driven end-to-end” by an
Nefarious actors are becoming adept at deploying Large Language Models (LLMs) in their malware campaigns. Case in point, the threat research team at security firm Sysdig has discovered what looks to be the first instance of an attack using agentic ransomware. The researchers say it’s a “complete extortion operation driven end-to-end” by an LLM.
This malicious software, which has been named Jadepuffer, leverages a vulnerability in the Longflow framework that’s used by developers who create software using LLMs. Once the malware gains access to the system it begins to search for valuable data that’s often found in AI assisted development environments, such as API keys and credentials, that can be used to compromise other systems used by victims for deploying ransonmware.

Something that stood out to the researchers about Jadepuffer is that the malware is capable of adapting in real time. It initially failed to create a new account with administrative access on a target device. However, it was able to pivot to a different kind of payload, which ultimately allowed it to create the account with the permissions it needed to continue the attack. All of this happened without any intervention from a human threat actor and occurred in the span of 31 seconds.
The silvering lining is that there are telltale signs found by the researchers that point to this being an LLM driven attack, which can provide defenders with something to key in on to prevent attacks in the future. Its codebase is full of “self-narrating code” that is common in LLM written software, and this is something defensive tooling can look for in order to block this kind of attack before it compromises any systems.
As the researchers point out, this is a “marker of where extortion tradecraft is heading.” Developers will need to be more mindful going forward, ensuring their development tools are up-to-date and properly configured to lessen the risk of falling victim to this kind of attack.
![]()
When Alan isn’t watching his favorite streamers on Twitch he’s writing about tech, gaming and cybersecurity.
Opinions and content posted by HotHardware contributors are their own.
| # | Наименование новости | Тональность | Информативность | Дата публикации |
|---|---|---|---|---|
| 1 | AI Agent Carries Out Ransomware Attack in Possible Cybercrime First | 0 | 8 | 07-07-2026 |
| 2 | Впервые зафиксирована атака вымогателей, которую почти всю провёл ИИ | 0 | 7 | 06-07-2026 |
| 3 | DragonForce Ransomware Is Hiding in Microsoft Teams Traffic | 0 | 7 | 17-06-2026 |
| 4 | Как агент сам откроет дверь хакеру? Разбираю три реальных пробоя AI-агентов и почему обычный ред-тиминг их не найдёт | 5 | 8 | 28-06-2026 |
| 5 | Malicious AI Coding Plugins Hit JetBrains Marketplace, Stealing API Keys From Developers | -2 | 8 | 17-06-2026 |
| 6 | Хакеры активизировали атаки шифровальщиками на туроператоров | -3 | 7 | 25-06-2026 |
| 7 | Millions of iPhones at risk of devastating 'DarkSword' cyberattack: 'Act NOW' | -2 | 6 | 19-03-2026 |
| 8 | Linux Foundation & Others Launch "Akrites" To Defend Open-Source Software From AI-Enabled Exploits | 0 | 7 | 25-06-2026 |
| 9 | AI's double-edged (cyber) sword | 0 | 7 | 21-05-2026 |
| 10 | Flipper Zero Responds To Firmware Fears With New Community Roadmap | 0 | 5 | 06-07-2026 |