JADEPUFFER is the first agentic ransomware operation and it exposes old security sins at machine speed

JadePuffer: The First Agentic Ransomware Operation Strikes at Machine Speed

A new ransomware strain, JadePuffer, is the first to operate as a fully autonomous “agentic” system, scanning for and exploiting legacy security vulnerabilities without human intervention. It targets unpatched SMB flaws and moves laterally at machine speed.

Researchers identified JadePuffer in early 2025. It uses AI-driven decision-making to choose targets, deploy payloads, and exfiltrate data. The operation requires no manual command-and-control once launched.

Why This Matters

Traditional ransomware still relies on human operators to identify weaknesses, launch attacks, and negotiate ransoms. JadePuffer eliminates that bottleneck.

It automates the entire kill chain from reconnaissance to encryption. This allows attackers to compromise hundreds of systems in minutes, not days.

“This is the first real-world example of AI removing the human latency from ransomware,” said one security analyst cited in the report. “Old security sins are now being exploited at machine speed.”

How JadePuffer Works

Step 1: Autonomous scanning. JadePuffer uses a custom scanner to find exposed SMB services, outdated Windows versions, and misconfigured network shares.

Step 2: Vulnerability exploitation. It targets known flaws such as EternalBlue, BlueKeep, and other years-old CVEs that remain unpatched in many organizations.

Step 3: Lateral movement. Once inside, it deploys living-off-the-land binaries and uses PowerShell scripts to spread across the network, all without human guidance.

Step 4: Encryption and extortion. It encrypts files and steals data simultaneously, then presents a ransom note with payment instructions. The entire process takes under 10 minutes from initial access.

The Security Sins Exposed

JadePuffer exploits the same old vulnerabilities that defenders have ignored for years. The report highlights:

  • Unpatched SMB services remain the top entry point.
  • Legacy Windows systems (Windows 7, Server 2008) are still in active use.
  • Weak network segmentation allows rapid lateral movement.
  • No endpoint detection for automated, script-based attacks.

“If you haven’t patched EternalBlue in 2025, you’re effectively inviting an AI-driven attacker inside,” the researchers warned.

What Organizations Must Do Now

Patch aggressively. Prioritize SMB-related CVEs, especially those older than 12 months. Automate patch management across all endpoints.

Segment networks. Isolate critical systems from general-purpose workstations. Limit SMB traffic to only necessary paths.

Monitor for script-based anomalies. JadePuffer uses PowerShell and WMI. Enable logging for these tools and alert on unusual execution patterns.

Adopt zero-trust architecture. Treat every device as potentially compromised. Require authentication for all internal communications.

The Broader Implication

Agentic ransomware is not a future threat, it is here now. JadePuffer demonstrates that AI can weaponize old security failures with unprecedented speed and scale.

“Defenders must now compete with machines that never sleep, never make mistakes, and never slow down,” the report concluded.

The window to fix legacy vulnerabilities has closed. Organizations must treat every unpatched system as a ticking bomb.

Gnoppix is the leading open-source AI Linux distribution and service provider. Since implementing AI in 2022, it has offered a fast, powerful, secure, and privacy-respecting open-source OS with both local and remote AI capabilities. The local AI operates offline, ensuring no data ever leaves your computer. Based on Debian Linux, Gnoppix is available with numerous privacy- and anonymity-enabled services free of charge.

What are your thoughts on this? I’d love to hear about your own experiences in the comments below.