Ironscales, an AI-powered email security platform, announced its Winter 2026 release featuring a new agentic architecture built for today’s AI-driven threat landscape. The release introduces three specialized AI agents—Red Teaming, Phishing SOC and Phishing Simulation—which are designed with pre-emptive security measures. The release also includes integrated email encryption for outbound data protection as well as enhancements to the company’s deepfake protection for Microsoft Teams.
“Phishing 3.0 is flawless impersonation at scale. Attackers use AI to research organizations, craft personalized lures, and bypass pattern-based detection on the first attempt. No malicious payloads, just pure social engineering,” said Eyal Benishti, CEO of Ironscales. “Legacy solutions weren’t built for this. But our new agents enable the shift from reactive to preemptive email security, allowing CISOs and their teams to stay ahead.”
The agents are designed to work together to create a system of defense that anticipates, investigates and prepares, officials said.
The Red Teaming Agent performs the same OSINT reconnaissance as attackers do, scanning social media, press releases and job postings to map exposure. It then uses those findings to harden detection before a real attack arrives, the company said.
The Phishing SOC Agent is designed to deliver L2 analyst-level forensic investigation of suspicious emails in minutes. When an executive escalation or sophisticated vendor impersonation demands more than a confidence score, it produces a complete Security Assessment with verdict, evidence and reasoning, without pulling security teams off other work, officials said.
Lastly, the Phishing Simulation Agent generates hyper-personalized simulations using real OSINT data, scoring each employee’s vulnerability, and then building targeted attacks in their native language based on what an adversary would actually send, the company said. For example, generic templates test whether employees can spot fake emails to help train them for the real thing.
The winter release also introduces integrated email encryption, extending platform protection to outbound email. In this instance, adaptive AI reads the context of outbound messages and applies encryption through policy-based encryption that automatically protects sensitive and regulated content as well as user-initiated encryption for high-stakes workflows, the company said.
Finally, the release also advances the company’s integrated deepfake protection for Microsoft Teams via enhanced voice detection that extends the platform’s biometric analysis beyond visual identity and automatic profile learning designed to make scaled deployment easy.
“The biggest question we heard from customers about deepfake protection was, ‘How do I actually roll this out at scale?’” said Benishti. “Automatic profile learning answers that. Your employees don’t have to do anything different. The system learns as they work.”
In related news, Ironscales also added to its leadership team. Steven Malone, a cybersecurity and B2B SaaS veteran, is joining the company as chief strategy officer, while Amit Bluman, who has more than 20 years of experience in cybersecurity, data, analytics, AI and product leadership, has been named SVP of research and development.
