Latest news with #Synack
Yahoo
20 hours ago
- Business
- Yahoo
Synack Unveils Active Offense Agentic AI Solution to Validate Exploitable Vulnerabilities
Sara Triage brings autonomous vulnerability analysis to Synack's Penetration Testing as a Service (PTaaS) platform REDWOOD CITY, Calif., Aug. 11, 2025 /PRNewswire/ -- Synack, a leader in offensive security innovation, today announced the launch of Active Offense powered by the Sara (Synack Autonomous Red Agent) AI architecture. Active Offense, now integrated into the Synack PTaaS platform, leverages autonomous validation to help organizations quickly identify exploitable vulnerabilities that represent real risk. Security teams are increasingly overwhelmed by high volumes of vulnerability data, even as industry research shows most breaches exploit known software flaws. Active Offense autonomously validates scanner output, identifying which vulnerabilities pose exploitable threats in real-world conditions and sending that signal to the teams that need it. "As attackers use agentic AI tools to rapidly identify and automatically exploit vulnerabilities, defenders need their own AI to keep up at machine speed," said Synack CTO and co-founder Mark Kuhr. "Active Offense levels the playing field for security teams fighting the next generation of threats by delivering autonomous offensive security at scale." Active Offense brings together the Synack PTaaS Platform, Attack Surface Discovery and Sara Triage—its AI-driven component that delivers proof-based validation—to rapidly confirm exploitable risk. Its scalable, human-in-the-loop model escalates targeted vulnerabilities to the Synack Red Team, a global community of 1,500+ elite security researchers, for expert review. This approach enables security teams to easily go from visibility and analysis to corrective action, all in one platform. Caption: Sara Triage Dashboard from the Synack Platform "With Active Offense, security teams receive daily prioritized reports helping them shift the focus from 'what might be exploitable?' to 'what is exploitable and needs action now?'" said Jeff Barker, Synack SVP for product management. "It adds a smarter, goal-driven analyst that increases coverage, accelerates remediation and measurably reduces risk." Key Active Offense benefits include: Continuous attack surface visibility: Self-service and always-on discovery and analysis ensure an accurate view of even the most dynamic attack surfaces. Reduced analyst workload and increased efficiency: World-class Synack validation and prioritization of vulnerabilities eliminates the need for redundant review and allows teams to focus on real, exploitable threats. Accelerated remediation of critical risks: Continuous exploitability assessment surfaces critical vulnerabilities, delivering high-confidence, verified findings Enhanced value from existing vulnerability detection: Enriched scanner output with real-world exploit intelligence, asset context, and threat data improves prioritization without requiring new tools or disrupting workflows. Seamlessly integrated with Synack's PTaaS platform: Scalable human-in-the-loop analysis proactively eliminates noise, validates threats and reduces risk. To learn how Active Offense can help organizations stay ahead of emerging threats by speeding up vulnerability detection and remediation, visit About Synack Synack is the leader in human-led and AI-powered Penetration Testing as a Service (PTaaS), transforming offensive security to help organizations proactively reduce risk, stay compliant and defend against evolving cyber threats. We are committed to making the world more secure by harnessing agentic AI innovations and a talented, vetted community of security researchers to deliver continuous penetration testing and autonomous vulnerability management. Founded by former NSA operatives, Synack has enabled nearly 10 million hours of expert testing to protect critical assets, from global financial systems to U.S. Defense Department networks. Learn more at View original content to download multimedia: SOURCE Synack Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
20 hours ago
- Business
- Yahoo
Synack Launches Agentic AI Architecture with Human-in-the-Loop to Transform PTaaS
New hybrid intelligence platform leverages 13 years of penetration testing innovation to deliver proactive security validation for the era of AI-powered attackers REDWOOD CITY, Calif., Aug. 11, 2025 /PRNewswire/ -- Synack, a pioneer in offensive security innovation, today unveiled its agentic AI architecture, Sara (Synack Autonomous Red Agent). Sara enhances Synack's premier Penetration Testing as a Service (PTaaS) platform to deliver proactive, risk-based security validation featuring a human-in-the-loop approach. By fusing autonomous AI capabilities with the expert human analysis of the Synack Red Team, organizations can autonomously reduce risk across their attack surface. As threat actors increasingly adopt AI to develop, optimize and scale attacks, defenders must respond in kind. This next-generation platform embodies an AI-versus-AI model, where AI-powered validation—supervised and guided by human judgment—counters machine-driven reconnaissance and attacks. The result is a powerful, adaptive solution that mirrors real-world adversary behavior while minimizing risk and false positives. "Security teams are no longer just fighting humans—they're defending against AI-enhanced adversaries," said Dr. Mark Kuhr, Synack co-founder and CTO. "With our Sara agentic AI and human-in-the-loop model, we equip defenders with the same level of intelligence and speed, turning the tables in this era of AI-versus-AI cybersecurity." The Sara agentic AI architecture delivers scalable, adaptable assessment of attack surface risk. Sara Triage, a core component of Synack's new Active Offense product, is available immediately to provide autonomous triage of discovered vulnerabilities, validating those that are truly exploitable. Sara Pentest will follow later this year to conduct full-scope, objective-based penetration tests in concert with the Synack Red Team. Sara's human-in-the-loop architecture ensures discovery of logic flaws, chained exploits and nuanced vulnerabilities, bridging the gap between automated detection and human intuition. The model's other benefits in the Synack platform include: Integrated Management of Human and Agent Testing: Human researchers and agents collaborate to reduce attack risk in one centralized interface. Scalable Human-in-the-Loop Analysis: 1,500+ security researchers are available on-demand for human analysis of AI-discovered findings. Agent Thinking Visibility: Easily review agentic AI decisions, including detailed 'proof of exploitability' information. Rapid Attack Surface Coverage: Flexibly deploy agent and human testing across the managed attack surface. Reporting and Analytics: Access real-time and historic analysis of agentic and human-led testing results to understand vulnerability root cause and drive corrective action. Synack's AI-powered PTaaS platform aligns with modern security programs like Continuous Threat Exposure Management (CTEM) and supports global compliance frameworks. Its native integrations with Security Information and Event Management (SIEM), External Attack Surface Management (EASM), vulnerability management and ticketing systems help teams operationalize penetration testing findings in real time. To learn more about how Synack's PTaaS platform powered by Sara keeps pace with AI-enabled threats, please visit About Synack Synack is the leader in human-led and AI-powered Penetration Testing as a Service (PTaaS), transforming offensive security to help organizations proactively reduce risk, stay compliant and defend against evolving cyber threats. We are committed to making the world more secure by harnessing agentic AI innovations and a talented, vetted community of security researchers to deliver continuous penetration testing and autonomous vulnerability management. Founded by former NSA operatives, Synack has enabled nearly 10 million hours of expert testing to protect critical assets, from global financial systems to U.S. Defense Department networks. Learn more at View original content to download multimedia: SOURCE Synack
