This alert may not be shared outside your organization, Do Not Repost or send, place on other websites, List servers, or send to others via email, including other associations or parties. Members and Law enforcement use only. Contact us for any permissions. To do otherwise will result in the loss of membership.
Complete Story
07/06/2026
AI-powered ransomware has officially arrived – and it's only the beginning
Cyber News
Ransomware attacks no longer require a human for execution: for the first time, an AI agent carried out a ransomware attack independently, exploiting vulnerabilities and encrypting data fully on its own.
Researchers from Sysdig observed what they consider to be the first instance of a fully agentic ransomware attack.
The AI-powered attacker, dubbed Jadepuffer, gained access by exploiting CVE-2025-3248, a critical vulnerability that allows threat actors to execute arbitrary code on vulnerable internet-facing Langflow servers.
Once inside, it ran an adaptive campaign to locate the data and executed a database-extortion playbook against the victim's production database server.
Alerts
The FRPA alert system distinguishes us from other groups by gathering and providing information to law enforcement, retailers AND financial institutions.
more informationResources
Your electronic library to help in fighting financial fraud for all of our partners.
more information
