An "agentic threat actor" successfully exploited a Langflow flaw to steal data from a production database server and encrypt ...
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Researchers identified what they believe is the first documented case of a ransomware operation, JadePuffer, conducted ...
ESET Research has released its H1 2026 Threat Report with statistics from December 2025 through May 2026.ClickFix – a social engineering ...
JadePuffer exploited a vulnerable Langflow server, harvested credentials, moved laterally, and encrypted more than 1,300 ...
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
A threat group researchers call "Armored Likho" has gained access to government agencies and electrical power entities in ...
They're not bad; they're just prompted that way. Sysdig threat hunters documented what they say is the first-ever documented ...
A team of developers, including the co-creator of the Signal protocol and contributors from Microsoft and Harvard, are building out open-source software that can help bring the sort of hardened ...
The new open-source project could serve as the basis for a future of apps with features as complex as Slack, Discord, or Google Docs—but with added protection against surveillance.
Attackers can inject indirect prompts in normal-looking repositories to trick Claude Code into spawning a reverse shell.
This week: a DeepSeek browser-only ransomware path, AI pen testing trust dropped, Mustang Panda targeted India, Tata breach ...
Some results have been hidden because they may be inaccessible to you
Show inaccessible results