Sysdig says JADEPUFFER used CVE-2025-3248 in Langflow to automate intrusion, credential theft, encryption, and data wipe.
The infostealer was delivered via CVE-2026-48558, a critical authentication bypass vulnerability in SimpleHelp.
Available today, ExpressKeys now delivers more secure sharing, passkey support, and improved cross-device management.
There are several blind spots that companies face on the way to quantum readiness, but boards can work to resolve these.