New AI-assisted, human-validated service helps enterprises focus on the risks most likely to be exploited in their own environments, independent of OEM patch and upgrade cycles.
DUBLIN, IRELAND, 18 MAY 2026: Origina, an independent software maintenance partner supporting business-critical enterprise systems, today announced OPTAS, a patent-pending threat intelligence capability designed to help customers predict, validate, prioritize, and mitigate emerging software vulnerabilities before public disclosure.
Unlike alternative AI-powered security tools that predict thousands of unvalidated vulnerabilities without context or fixes, OPTAS completes the loop by enabling stretched security teams to proactively address real problems instead of theoretical risks. Origina’s new service predicts and identifies emerging vulnerabilities most likely to be exploited in a given environment, validates them through independent human review, prioritizes them according to each organization’s specific risk context, and delivers targeted mitigation actions supported by a dedicated team of security experts.
OPTAS evaluates each organization’s operating environment across the full technology stack, threat exposure, regulatory context, and operational constraints. Its analysis is built to think like an attacker, identifying the credible exploitation paths a real adversary would target, rather than every theoretical exposure.
During Origina’s testing, OPTAS identified a set of previously undisclosed vulnerabilities in a widely deployed enterprise platform ahead of OEM disclosure. These were independently validated by penetration testers. Origina disclosed the findings to the OEM, who confirmed they no longer supported the version of the product and therefore would not take any action. Origina developed mitigations for the vulnerabilities ahead of public disclosure – independent of the OEM.
OPTAS addresses a growing gap in enterprise security: patch compliance alone does not always reflect real-world exposure. Many vulnerabilities affecting enterprise platforms sit outside standard OEM patch cycles, including in open-source dependencies and customer-specific configurations. Origina’s analysis of 13 major enterprise platforms found that 74% of vulnerabilities affecting core enterprise software sit in open-source dependencies, outside of standard OEM patch cycles. In addition, organizations relying on patch compliance alone may be addressing as little as 30% of their actual exposure. Unlike patching, OPTAS evaluates each customer’s environment, exposure, regulatory context, and operational constraints to identify the credible exploitation paths most likely to matter.
These dynamics favor the original software vendors. Vendor-led security models may not always align fully with customers’ needs for an independent risk base. Too often, fear-driven security narratives reinforce dependency rather than resilience.
“Origina was founded on a simple belief: customers deserve better. They deserve better than fear-led upgrade cycles, better than vulnerability noise without context, and better than being left exposed when the OEM has moved on. From the outset, we made it our mission to deliver world-class protection for the business-critical software our customers depend on. OPTAS is the latest expression of that mission. It gives customers an independent, continuous way to identify, validate, and mitigate vulnerabilities in the software they rely on, so they can operate stable, older versions with confidence in a world no longer defined by OEM dependency,” said Rowan O’Donoghue, Chief Innovation Officer & Co-Founder at Origina.
“Cybersecurity has become a game of patch whack-a-mole, and AI has only made it faster. OPTAS targets the 1% of vulnerabilities that matter so security teams aren’t chasing the 99% that don’t. It’s a fundamentally different approach, prioritizing intelligence over alerts and validation over volume. We tell organizations exactly where to act, what to prioritize, and what to do about it,” said Benjamin Lipczynski, Director, Security and Regulatory Services at Origina.
OPTAS operates independently of vendor roadmaps and forced upgrade cycles. Available to all Origina customers as part of our vulnerability advisory service, the service protects business-critical systems long after vendors have stepped away.
Origina is attending Cyber Security Congress North America, where the company will present ‘Before the CVE – Anticipating Threats in Complex Enterprise Environments’, exploring how enterprises can proactively anticipate and mitigate emerging vulnerabilities before public disclosure.
About Origina
Origina has been recognized by Gartner every year since 2019 as an independent software maintenance partner supporting business-critical systems for over 300 of the world’s largest enterprises. Origina was founded to challenge the traditional software model and shift control back to the customer. Origina.com
About OPTAS
OPTAS (Origina Proactive Threat Assurance Service) is Origina’s human-validated predictive vulnerability intelligence service. A bespoke neural network identifies indicators of emerging risk before public disclosure. Experienced security researchers validate every finding before it reaches a customer. Advisories are delivered through the Vulnerability Advisory Portal, mapped to ATT&CK, CWE, and CVSS frameworks. Origina.com/OPTAS
Media contact:
Fight or Flight PR: [email protected]
