TECH NEWS

The next evolution of the penetration test must include agentic AI

https://cdn.mos.cms.futurecdn.net/y7GLevUTEjLYdujEYsv668-2560-80.jpg

When a CISO tells the board “we tested that system last quarter,” it sounds reassuring. But in today’s threat landscape, it’s a measurement that no longer maps to reality.

Recent industry research shows that while 95% of organizations prioritize penetration testing, only 32% of their attack surface is actually tested. The problem isn’t that penetration testing is broken. It’s that the word “tested” no longer means what organizations think it does.

Penetration testing used to involve a small team of humans spending a limited amount of time in a system - mapping what they could reach, identifying vulnerabilities within that window, and compiling results into a static report.

That model was already under pressure from the pace of change. Then AI broke it.

“Tested” simply isn’t pulling its weight anymore.

Agentic AI is rewriting the rules

For more than a decade, automationwas the advantage. Mass scanners and automated...

Copyright of this story solely belongs to techradar.com. To see the full text click HERE

Read more