Skip to content

An AI Agent Ran a Ransomware Attack Start to Finish. The Door It Walked Through Belonged to Nobody.

← Back to Insights
ai-security

On July 2, 2026, Sysdig Threat Research disclosed JADEPUFFER, the first ransomware attack run end to end by an autonomous AI agent. Every headline said AI is now a hacker. What they missed is that the AI did not break in. A four-month-old, unauthenticated, internet-exposed server that nobody owned did. The technology worked fine. No one was in charge of it.

Jeff Leggett··7 min read
An AI Agent Ran a Ransomware Attack Start to Finish. The Door It Walked Through Belonged to Nobody.

Related

See how each vendor type maps to these maturity levels

AI platforms, consultants, and deployed teams deliver very different outcomes at each maturity level. See the full comparison.