Agentic ransomware is here. JADEPUFFER, and what small teams do now.
On July 1, Sysdig documented the first ransomware run end-to-end by an LLM. No human at the keyboard. It broke in through a years-old Langflow bug, harvested credentials, moved laterally, and torched a production database — narrating its own reasoning the whole way. The techniques were all old. That's the point. Here's what it means for anyone running exposed infrastructure, and the hardening pass to do this week.