eSentire integrates AI penetration testing with MDR via Atlas Preempt

eSentire has introduced Atlas Preempt, a new module within its Atlas Platform designed to close the gap between attacker speed and defender response. The solution delivers continuous, AI-driven offensive testing that maps exploitable exposures across customer environments and feeds those findings directly into eSentire’s 24/7 Managed Detection and Response (MDR) service. Human oversight remains integral to the process, ensuring control and accountability.

Atlas Preempt bundles several capabilities into a single workflow. Threat intelligence derived from primary research aligned with global law enforcement agencies drives threat hunting and informs detection engineering for the MDR service. Vulnerability scanning feeds directly into penetration testing and helps prioritize findings. Attack surface discovery reveals both known and unknown assets, expanding the depth and breadth of validated exposures. The core feature, AI-led autonomous penetration testing, runs continuous adversarial simulations to inform detection tactics, replacing periodic manual assessments and linking offensive pressure directly to MDR.

“The economic advantage has always favored attackers, and frontier-AI models widen it,” said Dustin Hillard, Chief Product and Technology Officer at eSentire. “They now operate at machine speed and scale, while quarterly assessments and severity scores were built for a threat that moved at human pace. Atlas Preempt closes that gap, giving defenders a continuous attacker’s-eye view of their own environment and turning vulnerability disclosures into validated, prioritized risk in hours, not weeks, with the human oversight boards, regulators, and insurers require.”

The timing reflects a stark shift in the threat landscape. Attackers now weaponize new vulnerabilities a median of seven days before public disclosure. According to Verizon’s 2026 Data Breach Investigations Report, vulnerability exploitation was the leading initial access vector for roughly one-third of all breaches, a 55 percent year-over-year increase. Yet many defenders still prioritize controls based on static risk scores.

Atlas Preempt replaces point-in-time assessments and reactive MDR with offensive AI operatives that run reproducible attack simulations and validation. The platform correlates findings against existing exposure management scanners, enabling organizations to rank exposures by proven exploitability rather than severity scores alone.

eSentire’s AI-led autonomous penetration testing engine orchestrates hundreds of reconnaissance, vulnerability, exploit, and agentic hacking tools, enhanced by live threat intelligence from the company’s Threat Response Unit (TRU) team.

A recent real-world engagement demonstrated the platform’s impact. A healthcare electronic medical record (EMR) provider relied on Atlas Preempt to catch a critical exposure before threat actors could exploit it. While manual penetration tests typically focus on primary production domains, the AI agent autonomously enumerated over 300 subdomains without manual scoping constraints. It discovered an overlooked staging API host where authorization controls were inadvertently disabled across all 106 endpoints. This left more than 20 million patient records , including social security numbers, prescriptions, dates of birth, and addresses , exposed to unauthenticated callers.

eSentire validated and delivered the findings to the customer on the same day, along with a five-step prioritized remediation plan. The organization implemented immediate web application firewall containment, staying ahead of its 60-day HIPAA breach assessment timeline. The exposure was identified, remediated, and closed before an attacker could take advantage of it.

Additional capabilities include integration with existing security tools and workflows, automated reporting for compliance and audit requirements, and customizable testing schedules that align with business risk tolerance.