IRONSCALES Unveils Winter 2026 Release with AI Security Agents and Deepfake Protection Enhancements

IRONSCALES, an AI-powered email security provider protecting more than 17,000 organizations worldwide, has announced its Winter 2026 Release, introducing a new agentic architecture designed to address the rapidly evolving AI-driven threat landscape. The release focuses on proactive defense capabilities by launching three specialized AI agents that help organizations move beyond traditional reactive email security.

The new system introduces Red Teaming, Phishing SOC, and Phishing Simulation agents. Together, these AI-driven tools form a coordinated defense framework that anticipates potential threats, investigates suspicious activity, and prepares organizations before attacks occur. As cyber threats increasingly rely on advanced AI and social engineering tactics, this shift toward preemptive security provides enterprises with stronger protection.

Cyber Technology Insights: Borneo Unveils Agentic AI: 24/7 Data Security Agents

IRONSCALES AI Agents are designed to work collaboratively, creating a comprehensive defense mechanism that anticipates risks and strengthens response capabilities. Consequently, organizations can better identify vulnerabilities and respond to threats faster than traditional security solutions allow.

Alongside these product innovations, IRONSCALES has strengthened its leadership team with two strategic hires. Steven Malone, a veteran in cybersecurity and B2B SaaS, has joined the company as Chief Strategy Officer. Meanwhile, Amit Bluman, who brings more than two decades of experience in cybersecurity, analytics, AI, and product leadership, has been appointed Senior Vice President of Research & Development. These additions reinforce the company’s commitment to accelerating product innovation and expanding its AI-driven security capabilities.

The release comes at a time when the cybersecurity landscape is rapidly evolving. A recent study by Osterman Research revealed that 88% of organizations experienced at least one security incident in the past year that weakened trust in digital communications. Furthermore, more than 80% of organizations reported increased attacker activity targeting trusted communication channels, while nearly 20% of security leaders believe traditional awareness training alone is no longer sufficient to defend against modern AI-powered threats.

“Phishing 3.0 is flawless impersonation at scale. Attackers use AI to research organizations, craft personalized lures, and bypass pattern-based detection on the first attempt. No malicious payloads, just pure social engineering,” said IRONSCALES CEO Eyal Benishti. “Legacy solutions weren’t built for this. But our new agents enable the shift from reactive to preemptive email security, allowing CISOs and their teams to stay ahead.”

Three AI Agents Strengthening Email Security

Each of the newly introduced AI agents plays a unique role in strengthening email security.

The Red Teaming Agent performs open-source intelligence (OSINT) reconnaissance similar to what cyber attackers use. It analyzes social media activity, job postings, and public information to identify potential vulnerabilities. Using these insights, the system strengthens detection capabilities before real attacks occur.

The Phishing SOC Agent delivers advanced forensic analysis of suspicious emails within minutes. Instead of simply assigning a risk score, the agent generates a detailed security assessment that includes evidence, reasoning, and a final verdict, allowing security teams to focus on higher-priority tasks.

Meanwhile, the Phishing Simulation Agent creates hyper-personalized training simulations based on real OSINT data. It evaluates employee susceptibility to phishing attacks and generates realistic test scenarios in their native language. This approach helps organizations train employees against the exact tactics adversaries are likely to use.

“Security teams are stretched thin,” said Audian Paxson, Principal Technical Strategist at IRONSCALES. “The Osterman data confirms what CISOs already know: the threat has outpaced the tooling. These agents don’t replace your team – they augment what your team can do. You get preemptive threat modeling, forensic-depth investigation on demand, and simulations calibrated to the actual attacks targeting your people. No additional headcount required.”

Cyber Technology Insights: Seekr Secures U.S. Army Contract to Deploy AI Agents for Weapon System Cybersecurity

New Outbound Email Encryption Capabilities

In addition to AI-powered threat detection, the Winter 2026 Release introduces integrated outbound email encryption. This capability extends the platform’s protection beyond inbound threats by securing sensitive data before it leaves the organization.

The system uses adaptive AI to analyze message context and automatically apply encryption when necessary. Two modes are available: policy-based encryption, which protects regulated or sensitive content automatically, and user-initiated encryption for high-risk communications. As a result, security teams gain centralized control, while compliance teams benefit from audit-ready governance and reporting.

Enhanced Deepfake Protection for Microsoft Teams

The release also includes significant improvements to IRONSCALES’ deepfake protection for Microsoft Teams, a capability first introduced in 2025. The latest update enhances biometric analysis by adding voice pattern recognition alongside visual identity verification. Consequently, the system can detect impersonation attempts even when cameras are turned off during meetings.

Additionally, a new automatic profile learning feature simplifies large-scale deployment. Instead of requiring manual photo uploads or user enrollment, the system automatically builds identity profiles as employees participate in regular Teams meetings. This passive learning approach allows organizations to deploy deepfake protection quickly and efficiently.

“The biggest question we heard from customers about deepfake protection was, ‘how do I actually roll this out at scale?'” said Benishti. “Automatic profile learning answers that. Your employees don’t have to do anything different. The system learns as they work.”

With these advancements, IRONSCALES aims to redefine modern email security by combining AI-driven automation, proactive threat modeling, and integrated collaboration protection. As cyber threats become more sophisticated, solutions like the Winter 2026 Release help organizations stay ahead by transforming security from reactive defense into predictive protection.

Cyber Technology Insights: Pillar Security Launches First Attack Surface Mapping and Testing Tool for AI Agents

To participate in our interviews, please write to our CyberTech Media Room at info@intentamplify.com

Tags: AI-powered threats, cyber threats, email security, identity verification, IRONSCALES, security teams, vulnerabilities

CyberTech Staff Writer

CyberTech Staff Writer is a seasoned cybersecurity expert and analyst with over 20 years of experience in IT security and networking. Passionate about safeguarding digital landscapes, they specialize in identifying, assessing, and reporting cyber threats and best practices to help enterprises prevent and recover from cyber disasters. Their expertise covers cloud security, application security, ransomware assessment, threat intelligence, incident response, Zero Trust Network Access (ZTNA), and more. As a recognized thought leader in the cybersecurity community, the CyberTech Staff Writer collaborates to deliver insightful, actionable content that empowers organizations to build strong, proactive defenses against evolving cyber threats.