Check Point Announces 'Agentic Exposure Validation,' an AI Agent to Counter AI Attacks

Check Point Software Technologies, a leader in cybersecurity solutions, has launched Agentic Exposure Validation (AEV) for exposure management. This AEV helps defenders stand on equal footing against attackers who exploit AI. Currently, frontier AI models such as Anthropic's Mythos and OpenAI's GPT-5.5 have the capability to discover exploitable vulnerabilities on a large scale and autonomously. The issue for management and CISOs is no longer just whether patches have been applied, but 'what vulnerabilities can an attacker actually exploit at this very moment?' AEV provides the answer to that question. Yochai Corem, General Manager of Exposure Management at Check Point, stated, 'The era of autonomous, AI-driven exploitation of vulnerabilities has arrived. Frontier AI models are attacking critical vulnerabilities on a large scale without human intervention. Security teams are overworked and unable to effectively respond to these new threats. AEV is our answer to this situation. This AI agent leverages our proprietary threat intelligence to validate an organization's digital surface from the outside, reasoning from an attacker's perspective. This identifies actually exploitable vulnerabilities and provides security teams with the rationale and remediation steps to act accurately and effectively before attackers do.' AEV utilizes AI agents that reason like attackers. By correlating an organization's unique environment, asset context, real-time exploit research, threat intelligence, and existing protection coverage, it determines whether an exposure is actually exploitable. AEV does not rely on static severity scores but proceeds through a safe demonstration and validation cycle. It analyzes relevant assets or CVEs, reinforces findings with Check Point's real-time threat intelligence, and checks if the attack path is already blocked or protected by existing controls. Without using methods that disrupt operations, it deploys targeted validation that mimics attacker reasoning. As a result, it makes decisions to either demonstrate the exposure with direct evidence, move to a new attack path if the path is already blocked, or completely eliminate the threat. AEV is a key validation function in the Continuous Threat Exposure Management (CTEM) program, helping organizations transition from discovery and prioritization to confident, evidence-based exposure reduction as they integrate AI into their core operations. AEV is now available as part of Check Point's exposure management.