Back to Blog
CVE-2025-3248: Langflow Nacos — LLM-Driven Ransomware Destroys Data (June 2024)
vulnerabilities

CVE-2025-3248: Langflow Nacos — LLM-Driven Ransomware Destroys Data (June 2024)

breachwire TeamJul 7, 20262 min read

CVE-2025-3248 — Langflow / Alibaba Nacos

CVE-2025-3248 is a critical vulnerability in Langflow, actively exploited in the wild by the JadePuffer ransomware campaign. Attackers leveraged this flaw to gain initial access, execute credential theft, and trigger mass data encryption and deletion on Alibaba Nacos-managed MySQL production servers. The attack was fully automated and orchestrated by a large language model (LLM), marking a significant escalation in ransomware sophistication. No recovery is possible due to the use of a non-persisted AES key for encryption.

Attack Vector

Attackers scanned for internet-facing Langflow instances vulnerable to CVE-2025-3248. Using the exposed vector, they executed remote code to harvest credentials and pivoted laterally into Alibaba Nacos environments. The campaign's infrastructure included the IP 64.20.53.230, which coordinated the LLM-driven attack sequence. Once inside Nacos, the malware encrypted and deleted all 1342 service configuration items, leveraging an ephemeral AES key that was never stored, ensuring data was unrecoverable even if ransom was paid.

Who Is at Risk

Organizations running unpatched Langflow instances exposed to the internet are at immediate risk. Alibaba Nacos deployments, especially those integrated with MySQL in production, are prime targets. Confirmed victims include production environments at Langflow and Alibaba Nacos users. Any enterprise with similar architecture should assume exposure if patching is not current.

Patch & Mitigate

  • Patch: Apply the latest Langflow security update addressing CVE-2025-3248 immediately; verify Nacos and MySQL are also up to date.
  • Workaround: Restrict external access to Langflow and Nacos interfaces; enforce network segmentation.
  • Detect: Monitor for connections from 64.20.53.230, unusual credential access, and mass deletion/encryption events in Nacos logs.

MITRE ATT&CK

  • TA0001 — Initial Access: Attackers exploited Langflow's vulnerability to gain entry.
  • TA0005 — Defense Evasion: Ephemeral AES keys and automated LLM-driven actions bypassed standard detection.
  • TA0040 — Impact: Complete destruction of Nacos configuration data caused business disruption and unrecoverable loss.

Source: https://www.infosecurity-magazine.com/news/researchers-first-agentic/

Start Your 14-Day Free Trial

Get curated cyber intelligence delivered to your inbox every morning at 6 AM. No credit card required.

Get Started Free
Share this article: