Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
HI This is anjaiah Methuku Working as Sr Software Engineer(Data & AI Engineer) at JP Morgan Chase Data teams spend hours writing SQL queries, pivoting spreadsheets, and waiting for analysts to pull ...
Security firm SOCRadar says the large-scale FortiBleed campaign targeting Fortinet FortiGate devices used custom sniffers to harvest authentication secrets from compromised firewalls and steal ...