#Japan #Tokyo #AI Security #Cyber Threats #Check Point

Check Point® Unveils Agentic Exposure Validation in Cybersecurity

In an era where cyber threats are evolving with advanced AI capabilities, Check Point® Software Technologies Ltd. has introduced a new product, Agentic Exposure Validation (AEV). This innovative solution is designed to help organizations counteract cyber attackers who leverage AI to exploit vulnerabilities autonomously. As firms face a world dominated by frontier AI models such as Anthropic's Mythos and OpenAI's GPT-5.5, the importance of proactive cybersecurity measures has never been more critical.

The rise of such sophisticated AI has created a shift in the nature of cybersecurity concerns. Executives and Chief Information Security Officers (CISOs) now grapple with not only ensuring their systems are patched but also with identifying potential vulnerabilities that attackers may exploit in real-time. AEV aims to address this pressing need by offering a robust framework that provides organizations with actionable insights and immediate responses to emerging threats.

Yochai Corem, Check Point's General Manager of Exposure Management, stated, “The era of AI-driven exploitation of vulnerabilities has arrived. Frontier AI models can attack significant weaknesses on a large scale without the need for human intervention. Security teams are already overwhelmed and struggling to adapt effectively to these new threats. Our response to this situation is Agentic Exposure Validation. This AI agent utilizes our unique threat intelligence to verify the digital surface of your organization from an outsider's perspective, reasoning like an attacker. This allows for the identification of actionable vulnerabilities and provides security teams with the rationale and remediation steps necessary to act decisively before attackers can exploit these weaknesses.”

Agentic Exposure Validation operates by mimicking an attacker's reasoning process. It correlates an organization's unique environment data, exposure metrics, asset contexts, real-time exploit research, and existing threat intelligence to determine whether a vulnerability is exploitable. AEV is not merely about static severity scoring; it adopts a cycle of safe proof and validation, focusing on analyzing relevant assets or Common Vulnerabilities and Exposures (CVEs), enhancing the findings with Check Point's real-time threat intelligence, and ensuring that any identified breach paths are already countered by existing controls.

By deploying targeted validations resembling attacker reasoning without disruptive techniques, AEV can either demonstrate exposure through direct evidence or determine whether previously exposed paths have already been blocked, and subsequently pivot to new attack routes or entirely eliminate the threat.

The benefits of AEV are already being validated by early adopters, with the tool successfully generating new exploits against numerous vulnerabilities that previously had no known attack cases.

Currently, AEV is available as part of Check Point's exposure management suite. Organizations interested in gaining insights into their external attack surface from the perspective of an autonomous attacker can request a free AEV scan through the provided demo request form.

As the landscape of threats continues to evolve, AEV provides a critical validation function that enables organizations to confidently transition from discovering and prioritizing exposures to evidence-based reduction of those exposures, thus integrating AI into the core of their operations.

More about Check Point®: Check Point® provides cybersecurity solutions to over 100,000 organizations worldwide, focusing on protecting firms during their secure AI transformations. With a mission to reduce risks and simplify operations, Check Point continually adapts its integrated security architecture to protect hybrid networks, cloud environments, digital workspaces, and AI systems against evolving threats and an expanding attack surface. Its strategic pillars encompass hybrid mesh network security, workspace security, exposure management, and AI security, ensuring consistent protection and visibility across complex multi-vendor environments.