Free Quiz
Write for Us
Learn Artificial Intelligence and Machine Learning
  • Artificial Intelligence
  • Data Science
    • Language R
    • Deep Learning
    • Tableau
  • Machine Learning
  • Python
  • Blockchain
  • Crypto
  • Big Data
  • NFT
  • Technology
  • Interview Questions
  • Others
    • News
    • Startups
    • Books
  • Artificial Intelligence
  • Data Science
    • Language R
    • Deep Learning
    • Tableau
  • Machine Learning
  • Python
  • Blockchain
  • Crypto
  • Big Data
  • NFT
  • Technology
  • Interview Questions
  • Others
    • News
    • Startups
    • Books
Learn Artificial Intelligence and Machine Learning
No Result
View All Result

Home » The ‘first’ AI-run ransomware attack still needed a human

The ‘first’ AI-run ransomware attack still needed a human

Tarun Khanna by Tarun Khanna
July 8, 2026
in Artificial Intelligence
Reading Time: 3 mins read
0
The ‘first’ AI-run ransomware attack still needed a human

Image Credit: https://techcrunch.com/

Share on FacebookShare on TwitterShare on LinkedInShare on WhatsApp

Last week, researchers at cloud security firm Sysdig stated they’d documented the known case of “agentic ransomware.” It was an extortion operation, dubbed JadePuffer, in which an AI agent — not a human — managed the technical execution of a real-world cyberattack from begin to complete. The agent broke right into a vulnerable server, stole credentials, moved through the goal’s network, encrypted files, or even wrote its personal ransom note, adapting to boundaries alongside the way like a human hacker would. Coverage of the operation explained it as run “without any human oversight,” with “no human on the keyboard.”

That’s not quite the whole picture. In an interview on Monday with CyberScoop, Sysdig’s Michael Clark, the company’s senior director of risk research, interpreted that a human was still very much involved — simply not within the technical execution. “A human still set up and pointed the operation and assigned the infrastructure behind it, the command-and-control server, the staging server used for the stolen data and selected a victim,” Clark stated. The credentials used to interrupt into the victim’s database, he added, weren’t harvested by the AI agent itself; someone acquired them individually, through a prior compromise, and handed them to the operation.

None of this contradicts Sysdig’s original claim, and the technical info of the attack persist to be notable on their own — wild, even. The agent got in through a recognized bug in Langflow, a popular open source tool for constructing LLM apps, then moved directly to a manufacturing MySQL server and exploited another known flaw to benefit admin access. It encrypted over 1,300 configuration records and not only left behind a ransom note that it wrote itself but it left a Bitcoin address wherein the ransom can be sent. Sysdig hasn’t revealed who was aimed.

Also Read:

AI Layoffs Are Backfiring as Companies Rehire Human Workers

It simplest takes one fake web page to fool AI buying bots, take a look at unearths

US government lifts restrictions on powerful AI models, Anthropic says

OpenAI And Anthropic Face A New AI Efficiency Reality

The methods were pretty ordinary seemingly, what stood out was the speed and transparency included. The agent fixed a failed login in 31 seconds, narrating its very own reasoning in natural-language code comments the whole way.

One detail that to start seemed to muddy the image has since been explained. Clark had advised CyberScoop that Sysdig found “multiple models were used in the attack,” bringing up harvested keys for OpenAI, Anthropic, DeepSeek, and Gemini — language that left open the inquiry of whether or not numerous models actively powered different stage of the intrusion. Asked to make clear, Clark advised TechCrunch that those keys have been simply a part of what the agent stole, not proof of what was driving it.

“The agent swept the Langflow host for anything valuable — provider API keys, cloud credentials, cryptocurrency wallets, and database configs — and those issuer keys have been part of the loot,” he stated through email. “They are indicative of what the attacker considered worth taking, however they do not inform us which model making the decisions.”

On the decisions truly running JadePuffer, Clark stated Sysdig “become not able to detect the specific model driving the agent” and has no visibility into its system prompt or configuration.

Microsoft researcher Geoff McDonald’s theory, offered on LinkedIn numerous days ago, is worth revisiting in that light. McDonald suspected an open-weight model with safety training stripped out, instead of a frontier model, was behind the attack, based on his own red-teaming experience displaying frontier labs’ safety layers hold up well. Sysdig’s own account doesn’t verify or rule that out.

McDonald’s post also warned that ransomware campaigns are now bounded primarily via attacker budget instead of human effort, elevating the possibility of “thousands or tens of thousands of simultaneous campaigns.” That problem is a touch harder to square with what Clark explained Monday. (If a human to choose each victim, provision infrastructure, and attain database credentials for every operation, that’s a bit of a bottleneck, at least.)

Either way, Clark told CyberScoop, whilst Sysdig hasn’t seen the same operation hit other victims yet, given how cheap it’s to run an agent, he anticipates that to change.

ShareTweetShareSend
Previous Post

UN Opens Global AI Governance Dialogue With Call For Safe And Inclusive AI

Next Post

Why the rise of open source AI isn’t hurting Anthropic … yet

Tarun Khanna

Tarun Khanna

Founder DeepTech Bytes - Data Scientist | Author | IT Consultant
Tarun Khanna is a versatile and accomplished Data Scientist, with expertise in IT Consultancy as well as Specialization in Software Development and Digital Marketing Solutions.

Related Posts

Examining what makes AI truthworthy as its adoption accelerates
Artificial Intelligence

Examining what makes AI truthworthy as its adoption accelerates

June 24, 2026
OpenAI release new initiative to help discover and patch open source bugs
Artificial Intelligence

OpenAI release new initiative to help discover and patch open source bugs

June 23, 2026
Near Absolute Zero, This Transistor Starts Acting Like a Brain Cell
Artificial Intelligence

Near Absolute Zero, This Transistor Starts Acting Like a Brain Cell

June 23, 2026
Billionaire Ambani require AI in each call, app, and domestic
Artificial Intelligence

Billionaire Ambani require AI in each call, app, and domestic

June 22, 2026
Next Post
Why the rise of open source AI isn’t hurting Anthropic … yet

Why the rise of open source AI isn’t hurting Anthropic … yet

Leave a Reply Cancel reply

Your email address will not be published. Required fields are marked *

33 − 29 =

TRENDING

Coinbase Expands x402 With AI Agent App Store, Pushing Crypto Payments Into AI Infrastructure

Coinbase Expands x402 With AI Agent App Store, Pushing Crypto Payments Into AI Infrastructure

Image Credit: https://cryptonews.com/

by Tarun Khanna
April 21, 2026
0
ShareTweetShareSend

How to use AI to begin an online business

How to use AI to begin an online business

Photo Credit: https://www.artificialintelligence-news.com/

by Tarun Khanna
July 16, 2025
0
ShareTweetShareSend

UK Insolvency Service Appoints First Crypto Specialist – What This Means for BTC Seizures

UK Insolvency Service Appoints First Crypto Specialist – What This Means for BTC Seizures

Photo Credit: https://cryptonews.com/

by Tarun Khanna
June 10, 2025
0
ShareTweetShareSend

Johns Hopkins Study Challenges Billion-Dollar AI Models

Johns Hopkins Study Challenges Billion-Dollar AI Models

Photo Credit: https://scitechdaily.com/

by Tarun Khanna
December 16, 2025
0
ShareTweetShareSend

Meta’s Mark Zuckerberg stated that AI agent tech progressing slower than predicted

Meta’s Mark Zuckerberg stated that AI agent tech progressing slower than predicted

Image Credit: https://economictimes.indiatimes.com/

by Tarun Khanna
July 3, 2026
0
ShareTweetShareSend

Karnataka’s Budget 2025-26: ₹1,000 crore Accelerator Fund, Quantum Park and EV Cluster

Karnataka’s Budget 2025-26: ₹1,000 crore Accelerator Fund, Quantum Park and EV Cluster

Photo Credit: https://english.varthabharati.in/

by Tarun Khanna
March 11, 2025
0
ShareTweetShareSend

DeepTech Bytes

Deep Tech Bytes is a global standard digital zine that brings multiple facets of deep technology including Artificial Intelligence (AI), Machine Learning (ML), Data Science, Blockchain, Robotics,Python, Big Data, Deep Learning and more.
Deep Tech Bytes on Google News

Quick Links

  • Home
  • Affiliate Programs
  • About Us
  • Write For Us
  • Submit Startup Story
  • Advertise With Us
  • Terms of Service
  • Disclaimer
  • Cookies Policy
  • Privacy Policy
  • DMCA
  • Contact Us

Topics

  • Artificial Intelligence
  • Data Science
  • Python
  • Machine Learning
  • Deep Learning
  • Big Data
  • Blockchain
  • Tableau
  • Cryptocurrency
  • NFT
  • Technology
  • News
  • Startups
  • Books
  • Interview Questions

Connect

For PR Agencies & Content Writers:

connect@deeptechbytes.com

Facebook Twitter Linkedin Instagram
Listen on Apple Podcasts
Listen on Google Podcasts
Listen on Google Podcasts
Listen on Google Podcasts
DMCA.com Protection Status

© 2024 Designed by AK Network Solutions

Welcome Back!

Login to your account below

Forgotten Password?

Retrieve your password

Please enter your username or email address to reset your password.

Log In
No Result
View All Result
  • Artificial Intelligence
  • Data Science
    • Language R
    • Deep Learning
    • Tableau
  • Machine Learning
  • Python
  • Blockchain
  • Crypto
  • Big Data
  • NFT
  • Technology
  • Interview Questions
  • Others
    • News
    • Startups
    • Books

© 2023. Designed by AK Network Solutions