Launch of Autonomous Penetration Testing Platform 'NodeZero®'
JSOL Corporation has launched services for 'NodeZero®', an autonomous penetration testing platform by Horizon 3 AI, Inc., as the exclusive MSSP in Japan starting June 1, 2026. It utilizes AI to continuously verify attack paths and vulnerabilities from an attacker's perspective, supporting corporate security measures.
📋 Article Processing Timeline
- 📰 Published: June 1, 2026 at 14:00
- 🔍 Collected: June 1, 2026 at 14:26 (26 min after Published)
- 🤖 AI Analyzed: June 1, 2026 at 18:10 (3h 43m after Collected)
JSOL Corporation (hereinafter 'JSOL') has launched services for 'NodeZero®', an autonomous penetration testing platform by Horizon 3 AI, Inc. (hereinafter 'Horizon3.ai'), as the exclusive Managed Security Service Provider (MSSP) in Japan, effective June 1, 2026. NodeZero is an autonomous penetration testing platform that leverages AI and automation technology from an attacker's perspective to continuously identify entry points, misconfigurations, and credential risks within corporate IT environments, helping to prioritize issues and verify improvements. As an MSSP, JSOL provides end-to-end support, from implementation and operation to organizing evaluation results and discussing remediation strategies, ensuring Japanese companies can maximize the service's utility. Additionally, in collaboration with our various security solutions and expert personnel, we provide operational services to support compliance with security guidelines issued by the Ministry of Economy, Trade and Industry and others.
[Background]
In recent years, cyberattacks, including those involving AI abuse and ransomware, have become increasingly sophisticated. Furthermore, beyond the exploitation of N-Day and Zero-Day vulnerabilities, there is a rise in tactics such as impersonating legitimate users by exploiting leaked credentials and misconfigurations. Traditional defense measures make it difficult to continuously grasp which paths could lead to intrusion or damage expansion. For instance, vulnerability scanners may issue numerous alerts, but without knowing if they are 'actually exploitable,' correct prioritization is impossible. Moreover, manual penetration testing is costly and infrequent, making it insufficient for the continuous protection of ever-changing IT environments.
Therefore, companies are required to continuously evaluate both the weaknesses that could serve as entry points and the paths through which damage could spread, prioritizing responses based on the premise that they will be attacked. Furthermore, to evaluate risks based on actual conditions like credential leaks, it is necessary to assess from the perspective of real-world harm, incorporating information circulating on the dark web and paste sites.
[Key Features of NodeZero]
NodeZero enables autonomous and continuous penetration testing, simulating how an attacker would attempt to breach protected environments (on-premises/cloud/hybrid) from the same perspective as real-world attackers. It eliminates the need for experts or complex script preparation, allowing tests to be run easily at any time. Furthermore, it summarizes potential attack routes and the scope of damage in a report format.
[Value Added by JSOL as an MSSP]
As an MSSP for NodeZero, JSOL provides integrated support, including implementation tailored to each customer's environment, coordination of penetration testing plans, Japanese-language organization and reporting of NodeZero dashboard results, and support for initial response and remediation strategy planning upon issue discovery.
[Background]
In recent years, cyberattacks, including those involving AI abuse and ransomware, have become increasingly sophisticated. Furthermore, beyond the exploitation of N-Day and Zero-Day vulnerabilities, there is a rise in tactics such as impersonating legitimate users by exploiting leaked credentials and misconfigurations. Traditional defense measures make it difficult to continuously grasp which paths could lead to intrusion or damage expansion. For instance, vulnerability scanners may issue numerous alerts, but without knowing if they are 'actually exploitable,' correct prioritization is impossible. Moreover, manual penetration testing is costly and infrequent, making it insufficient for the continuous protection of ever-changing IT environments.
Therefore, companies are required to continuously evaluate both the weaknesses that could serve as entry points and the paths through which damage could spread, prioritizing responses based on the premise that they will be attacked. Furthermore, to evaluate risks based on actual conditions like credential leaks, it is necessary to assess from the perspective of real-world harm, incorporating information circulating on the dark web and paste sites.
[Key Features of NodeZero]
NodeZero enables autonomous and continuous penetration testing, simulating how an attacker would attempt to breach protected environments (on-premises/cloud/hybrid) from the same perspective as real-world attackers. It eliminates the need for experts or complex script preparation, allowing tests to be run easily at any time. Furthermore, it summarizes potential attack routes and the scope of damage in a report format.
[Value Added by JSOL as an MSSP]
As an MSSP for NodeZero, JSOL provides integrated support, including implementation tailored to each customer's environment, coordination of penetration testing plans, Japanese-language organization and reporting of NodeZero dashboard results, and support for initial response and remediation strategy planning upon issue discovery.
FAQ
What is the significance of JSOL's role as an MSSP?
JSOL bridges the gap between advanced global AI security technology and the specific operational and compliance needs of Japanese enterprises.