Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
Attackers exploited Langflow vulnerability CVE-2025-3248 to conduct an agentic AI-powered ransomware attack involving reconnaissance, credential theft, and lateral movement.
Sysdig threat hunters documented what they say is the first-ever documented agentic ransomware infection with an LLM - not a ...
Attackers are actively exploiting path traversal and SQL injection in Langflow, LangGraph, and LangChain — below where your ...
Threat actors are continuing to exploit a critical Langflow vulnerability as part of fresh attacks designed to deliver a Monero cryptocurrency miner. The activity has been found to weaponize ...
Last year, Taylor Stanberry caught 60 Burmese pythons with her bares hands—a state record. But this self-taught hunter says she doesn't enjoy killing the snakes, she just knows it's a necessity.
MotherDuck is launching Flights, an agent-native data pipeline that enables users to choose the MCP server and AI agent of their choice to build and deploy data pipelines in minutes using a flexible, ...
Google reportedly patched a flaw in the Vertex AI SDK for Python that could allow attackers to hijack model uploads and trigger remote code execution across tenants. A design flaw in the Vertex AI ...
I ditched my terminal for Claude's built-in code executor, and I'm not going back.