Tag: GBHackers Security | #1 Globally Trusted Cyber Security News Platform

JADEPUFFER Agentic Ransomware Uses LLM to Automate Database Extortion

The first instance of agentic ransomware: JADEPUFFER, an LLM-driven extortion operation that automated an end-to-end database-crippling campaign. The actor gained execution on an internet-facing Langflow instance via CVE-2025-3248, used the AI-host environment to harvest cloud and API credentials, and pivoted…

FortiBleed Campaign Linked to INC and Lynx Ransomware Operations

A direct operational link between the large-scale FortiBleed credential-harvesting campaign and two active ransomware-as-a-service (RaaS) groups: INC Ransom and Lynx. This finding provides the first confirmed evidence that mass theft of FortiGate credentials is being integrated into ransomware deployment processes,…