
An AI Agent Ran a Ransomware Attack Start to Finish. The Door It Walked Through Belonged to Nobody.
← Back to Insights
ai-security
On July 2, 2026, Sysdig Threat Research disclosed JADEPUFFER, the first ransomware attack run end to end by an autonomous AI agent. Every headline said AI is now a hacker. What they missed is that the AI did not break in. A four-month-old, unauthenticated, internet-exposed server that nobody owned did. The technology worked fine. No one was in charge of it.
Jeff Leggett··7 min read
