Proofpoint Introduces Active Exploits Protection to Help Organizations Prioritize Vulnerability Patching for Real-World Attacks in the AI Era

• Disrupts AI-powered exploit-driven assaults earlier within the assault chain
• Allows safety groups to prioritize remediation based mostly on actual attacker exercise—not severity scores
• Robotically interprets exploit intelligence into rapid safety throughout major assault paths

SUNNYVALE, Calif., Might 27, 2026 (GLOBE NEWSWIRE) — Proofpoint, Inc., a number one cybersecurity and compliance firm, in the present day introduced Active Exploits Protection, a brand new resolution that empowers organizations to defend towards the rising publicity to AI-accelerated cyber threats. Based mostly on real-world threats noticed throughout Proofpoint’s telemetry, it identifies vulnerabilities actively abused within the wild and robotically interprets that intelligence to allow rapid safety throughout the first assault paths.

Superior AI fashions, together with frontier techniques able to autonomously discovering software program vulnerabilities, are dramatically growing the velocity at which they’re found and weaponized. The patch cycle is no longer the security clock, with time-to-active concentrating on collapsing from years to a matter of hours or much less. In some instances, assaults start earlier than public monitoring frameworks mirror the chance. Conventional, patch-based safety approaches can’t preserve tempo with this machine-speed risk surroundings.

Deep Intelligence Grounded in Actual-World Exploitation
Proofpoint’s benefit is rooted in dual-source visibility into how vulnerabilities are literally abused—usually earlier than they’re mirrored in public threat frameworks. Proofpoint’s assault telemetry spans tons of of hundreds of thousands of day by day e mail interactions, complemented by a world community of greater than 5,000 sensors, which have generated over three million exploit-related alerts in 2026 alone. Yr up to now, Proofpoint has recognized 12 actively exploited 2026 CVEs in comparison with eight at present listed in CISA’s Recognized Exploited Vulnerabilities (KEV) catalog. Energetic Exploits Safety operationalizes this intelligence, translating real-world malicious exercise into prioritized remediation and rapid safety.

“The velocity at which threats are evolving has essentially modified the chance equation,” mentioned Sumit Dhawan, CEO of Proofpoint. “It’s now not sufficient to establish vulnerabilities. Organizations want to know what attackers are exploiting in actual time and cut back their publicity instantly. By combining real-world exploit intelligence with protections throughout the first assault paths, we can assist defend on the velocity in the present day’s threats unfold.”

From Vulnerability Overload to Exploitation Readability
Whilst vulnerability volumes surge, with frontier AI accelerating discovery at scale, fewer than 6% of all disclosed vulnerabilities are ever noticed being exploited in real-world assaults. Safety groups are left drowning in “vital” findings, pressured to triage 1000’s of alerts with out clear alerts about what materially will increase threat. Organizations usually discover themselves allocating assets based mostly on severity scores relatively than precise attacker conduct.

Energetic Exploits Safety helps organizations transfer past patch velocity towards real-time publicity discount. Grounded in noticed attacker exercise, the answer permits safety groups to focus remediation on what materially reduces threat, shrink the window between vulnerability discovery and protection, and cease exploit-driven threats earlier than they disrupt the enterprise.

To assist organizations operationalize this method, Energetic Exploits Safety delivers 4 core capabilities:

• Prioritize Actively Exploited Vulnerabilities: Identifies vulnerabilities confirmed for use within the wild based mostly on Proofpoint telemetry throughout greater than 3 million organizations and 14,000 massive enterprises. Prioritization is pushed by noticed attacker conduct, not theoretical severity scoring, enabling safety groups to focus remediation on what materially reduces threat.
• Allow Quick Safety: Exploit intelligence is robotically translated into safety in roughly 35 seconds, with network-wide propagation in below 18 minutes. This reduces the publicity window for zero-day and newly weaponized threats to a median of minutes, even when patching hasn’t began. Throughout greater than two billion emails analyzed day by day, the platform maintains 99.999% detection precision.
• Quicker, Menace-Knowledgeable Selections: Turning intelligence straight into motion, Energetic Exploits Safety shortens the time between risk identification and safety deployment, gives real-time context for investigations, and permits clients to entry and tailor assault intelligence by way of APIs. The answer integrates with present SOC instruments, vulnerability administration platforms, and automation pipelines.
• Scale with AI-Pushed Workflows: Designed for contemporary safety operations, the answer gives a basis for AI-driven and automatic workflows. By embedding exploit intelligence straight into operational processes, organizations can cut back guide triage and operationalize publicity discount at scale.

“With AI-accelerated threats exploiting vulnerabilities sooner, enterprise safety groups want a sharper view of what attackers are concentrating on,” mentioned Vishal Salvi, World Head of Cognizant’s Cybersecurity Service Line. “Proofpoint’s Energetic Exploits Safety provides that focus, and Cognizant intends to assist our purchasers operationalize it via our managed safety and risk response companies, to allow them to prioritize remediation the place it issues most.”

Availability
Proofpoint Energetic Exploits Safety is out there globally in the present day and delivered by way of built-in platform capabilities and API entry.

To study extra in regards to the vulnerability panorama, learn our risk perception weblog: https://www.proofpoint.com/us/blog/threat-insight/more-cves-same-playbook-2026-vulnerability-exploitation-wild
For extra details about Proofpoint Energetic Exploits Safety, go to: https://www.proofpoint.com/us/blog/email-and-cloud-threats/future-exploit-defense-starts-first-mile

About Proofpoint, Inc. 
Proofpoint, Inc. is a world chief in human- and agent-centric cybersecurity, securing how folks, knowledge and AI brokers join throughout e mail, cloud and collaboration instruments. Proofpoint is a trusted associate to over 80 of the Fortune 100, over 10,000 massive enterprises, and hundreds of thousands of smaller organizations in stopping threats, stopping knowledge loss, and constructing resilience throughout folks and AI workflows. Proofpoint’s collaboration and knowledge safety platform helps organizations of all sizes defend and empower their folks whereas embracing AI securely and confidently. Be taught extra at http://www.proofpoint.com.

Join with Proofpoint on LinkedIn

Proofpoint is a registered trademark or tradename of Proofpoint, Inc. within the U.S. and/or different international locations. All different emblems contained herein are the property of their respective house owners. 

PROOFPOINT MEDIA CONTACT: 
Estelle Derouet 
Proofpoint, Inc. 
pr@proofpoint.com