Founded in 2024, Seattle-based Zast.AI relies on AI agents to identify and validate software vulnerabilities before reporting them, to eliminate false positives. Relying on an "automated PoC generation + validation" architecture, the company performs deep code analysis, generating proof-of-concept (PoC) exploits and executing them to confirm security defects. This 'zero false positive' approach, the startup says, also reduces alert fatigue and allows security teams to focus on real risks.
CrowdStrike claims that Falcon for IT Risk-based Patching solves this problem by bringing vulnerability management and patch implementation together within the Falcon console. It uses proprietary intelligence and AI models to determine which vulnerabilities are most likely to be exploited in practice. With features such as Patch Safety Scores and sensor intelligence, teams should be able to patch faster, more securely, and on a larger scale without disruption.
The acquisition focuses on real-time data pipelines designed to eliminate existing bottlenecks in security operations. The company sees significant opportunities for customers struggling with inefficient data processing. According to SentinelOne, security teams are not dealing with a lack of data, but with a lack of usable data. Legacy data pipelines are the main cause of this. They are designed for batch processing and struggle to keep pace with modern, AI-driven security operations centers.
