Check Point Software Technologies has unveiled a new AI-driven capability aimed at closing the widening gap between defenders and increasingly autonomous cyber threats, as frontier models begin to execute attacks with minimal human input.
The launch of Agentic Exposure Validation (AEV), part of Check Point’s Exposure Management platform, reflects a fundamental shift in cyber security priorities. As advanced AI systems evolve, the central question for CISOs is no longer whether systems are patched, but whether vulnerabilities are actually exploitable in real-world conditions.
“The era of autonomous, AI-driven exploitation is here. Frontier AI models are attacking critical vulnerabilities at scale, without human steering,” said Yochai Corem, general manager of exposure management at Check Point.
“Agentic Exposure Validation is our answer: AI agents that reason like attackers… and provide security teams the evidence and remediation to act effectively before attackers do.” Yochai Corem
From detection to proof
AEV introduces AI agents designed to simulate attacker behaviour across an organisation’s digital environment. Unlike traditional tools that rely on static severity scores, the system evaluates exposures dynamically by combining asset context, live exploit intelligence, and existing security controls.
The platform operates through a “safe proving loop”, analysing vulnerabilities, testing potential attack paths, and determining whether defences can be bypassed. It either validates an exposure with evidence, identifies alternative attack routes, or discards the risk entirely—enabling more precise prioritisation.
This marks a shift towards evidence-based remediation, a key requirement as organisations struggle with alert fatigue and fragmented security stacks.
Aligning with industry trends
The move comes amid broader industry recognition that exposure management must evolve. Gartner predicts that by 2026, organisations prioritising security investments based on continuous exposure validation will reduce breaches by up to 60%.
At the same time, the rise of generative and agentic AI is accelerating attacker capabilities. According to IBM’s 2025 Cost of a Data Breach Report, the global average breach cost reached US$4.45 million, with attack sophistication and speed continuing to increase.
Toward autonomous defence
AEV is positioned as a core component of Continuous Threat Exposure Management (CTEM), enabling organisations to move beyond vulnerability discovery into validated risk reduction. Early deployments have shown the system can generate novel exploits for previously unexploited vulnerabilities, underscoring both the opportunity and urgency of AI-led defence.
As cyber threats become faster and more autonomous, tools that replicate attacker logic may become essential for maintaining resilience at scale.
