Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
They're not bad; they're just prompted that way. Sysdig threat hunters documented what they say is the first-ever documented ...