the first documented end-to-end autonomous ai-agent ransomware attack, tracked as jadepuffer, exploited a langflow vulnerability and encrypted victim data — but the encryption key was printed once to a log and never stored, making the ransom unrecoverable. this means the operation was data destruction wearing a ransomware mask. cisa simultaneously added the langflow flaw to its known-exploited list, confirming active exploitation in the wild.