INSPECTING ARCHIVED INTELLIGENCE (OUTDATED VERSION).

JadePuffer Malware Targets Ransomware Capabilities

| 2026-07-06 08:30 CRITICAL HIGH
Executive Summary AI-generated
Researchers claim the world's first fully agentic ransomware, JadePuffer, has been unleashed on cloud security firm Sysdig. This adaptive and automated campaign targets an internet-facing Langflow instance by exploiting CVE-2025-3248, encrypting all Nacos service configuration items and deleting originals. The attackers use vulnerability exploitation, reconnaissance, credential harvesting, lateral discovery, persistence, and data destruction to achieve their goal without requiring any operator expertise. JadePuffer highlights the potential of large language models in carrying out ransomware attacks, offering a new detection and triage opportunity for network defenders.
Technical Mitigations AI-generated
* Implement robust least privilege access controls to limit the attack surface and reduce the risk of lateral movement. * Regularly update and patch internet-facing systems, including operating systems, applications, and services, to prevent exploitation of known vulnerabilities. * Use multi-factor authentication (MFA) for all users who require elevated privileges or have sensitive data. * Continuously monitor network traffic and system logs for suspicious activity, and respond promptly to potential threats.
Technical Observables
Intelligence Metadata
Actors / Malware / CVEs / Campaigns
CVE-2025-3248CVE-2025-3248 CVE-2021-29441CVE-2021-29441
Target & Sectors
Global Scope legallegal defensedefense
Incident Timeline
‎March 11, 2026
Researchers claimed the JadePuffer ransomware was their first fully agentic variant.
organisation VirusTotal
‎2026/07/06
JadePuffer attackers used a Telegram bot to forward operator messages to an LLM API endpoint, which then translated the instructions into shell commands.
organisation JadePuffer
organisation Ransomware
organisation CrownX.
organisation New Avalon
organisation ATA
organisation Sysdig
organisation Threat Research Team
organisation CVE-2025-3248
organisation LLM
organisation Langflow
organisation Postgres
organisation Langlow
organisation Naming and Configuration Service
organisation Nacos
organisation AES
organisation IP
organisation Microsoft Defender
organisation SentinelOne
organisation CrowdStrike
organisation Sophos
organisation Elastic Endpoint
organisation FortiEDR
organisation ESET
organisation Avalon
infrastructure Windows
organisation ISO
organisation Windows Shortcut
organisation Event Tracing for
organisation ETW
organisation Gather
organisation Phantom
organisation Discord
organisation Slack, Teams
organisation WireGuard
organisation Chromium
organisation Mozilla Firefox
organisation Collect
organisation SSH
organisation RDP
organisation API
organisation Telegram
organisation Palo Alto Networks Unit
Tactical Metrics
Metrics
infrastructure
‎Windows
Affected Product
Intelligence Sources
Infosecurity-Magazine 2026-07-06