Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
JadePuffer used AI to execute ransomware but still relied on humans for targets and infrastructure; learn what it means for ...
An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
has documented what it says is the first ransomware operation carried out from start to finish by an autonomous artificial ...
Knockoff is a new browser extension that identifies, dims, and filters product listings from junk pseudo-brands on Amazon.
Data from the company behind the popular collaboration solution was exposed online due to a misconfiguration. The software is ...
According to Socket, malicious payment SDK packages on npm and PyPI are harvesting developer credentials and CI/CD ...
Armored Likho BusySnake Stealer, a Python-based infostealer first disclosed by Kaspersky, is actively targeting government ...
Researchers have found a never-before-seen piece of macOS malware that combines a series of clever tradecraft to infect Macs ...
Enterprise data masking tools help organizations protect sensitive data while still making it usable for testing, analytics, ...
Tencent Cloud used over 20 agentic AI skills to migrate Indonesian telecom XLSMART's core systems in 4.5 months with zero ...
A lone threat actor used AI to orchestrate a complex attack against a large Amazon Web Services (AWS) environment and successfully extort the victim. Security and incident response firm Sygnia this ...