AI Is Flooding Security Teams With Findings—That Doesn’t Mean They’re Safer

Our CEO Ido Geffen explains why more security findings don't automatically mean better protection — and what actually reduces real risk.

Novee Marketing

1 min

Explore Article +


“​AI-assisted vulnerability discovery is increasing the number of security findings across organizations, but more findings do not automatically translate into meaningful risk reduction. In fact, I believe the opposite is increasingly true. Organizations can close thousands of vulnerabilities without meaningfully changing how difficult they are to breach.​

That disconnect is becoming harder to ignore as AI lowers the cost and speed of vulnerability discovery for both defenders and attackers. Security teams can now scan more systems, test more code paths and generate more findings than ever before. Meanwhile, attackers are using many of the same advances to identify exploitable weaknesses faster and on a larger scale.​ This has led to a growing industry tendency to confuse security activity with security improvement.​

Faster does not always mean safer, and finding more vulnerabilities is not the same thing as reducing meaningful exposure. In many environments, most findings are unreachable, already mitigated by upstream controls or contingent on conditions that do not realistically exist in production. Without context, more findings simply create more backlog. And backlog is not security.”

Read the full article at Forbes →

Originally published in Forbes on June 26, 2026 by Ido Geffen for Forbes Technology Council.

Stay updated

Get the latest insights on AI, cybersecurity, and continuous pentesting delivered to your inbox