Screener/Abnormal Security

Abnormal Security

AI-powered email security platform detecting sophisticated social engineering and AI-generated phishing attacks.

HQ🇺🇸 US
Est2018
Size501-1000
abnormalsecurity.com
Score
52.0 / 100
Evidence
5 items
Confidence
medium

Strong safety posture with established governance frameworks and active risk management.

Strengths:Governance Maturity, Technical Safety, External Engagement
Weaknesses:Risk Assessment, Regulatory Readiness
Focus Areas
email securityai threat detectionsocial engineeringbehavioral ai

Strengths

  • Security posture assessed at 62

Risks

No significant risks identified

Table of Contents

Security Assessment

Security-relevant indicators for vendor evaluation

Security Posture
54
TS-01dim: 60
Red Teaming & Pre-deployment Testing
Adversarial testing before deployment
TS-05dim: 60
Robustness & Adversarial Resilience
Resistance to adversarial attacks
RA-01dim: 48
Sector-Specific Risk Assessment
Risk analysis for deployment context
RA-03dim: 48
Dual-Use & Misuse Risk
Dangerous capability awareness
RA-07dim: 48
Incident History & Track Record
Past incidents and response quality
EE-04dim: 54
Vulnerability Disclosure Program
Bug bounty or CVE reporting process
Incident History
Abnormal Security incident records sourced from AIAAIC Repository and public reporting.
Integration: AIAAIC, OECD AI Incidents Monitor
Third-Party Audits
External audit reports, SOC 2 attestations, and ISO certifications verified where published.
Sources: Company filings, registry lookups
CVE & Disclosures
Known vulnerabilities and security advisories from NVD, GitHub Security Advisories, and vendor pages.
Sources: NVD, GHSA, vendor disclosure pages

Dimension Breakdown

GM
Governance Maturitypreliminary
Published policies, corporate structure, safety mandate, whistleblowing, executive commitment.
50
TS
Technical Safetypreliminary
Benchmarks, adversarial robustness, fine-tuning safety, watermarking, model cards, research output.
60
RA
Risk Assessmentpreliminary
Dangerous capability evaluations, thresholds, external testing, bug bounty, halt conditions.
48
RR
Regulatory Readinesspreliminary
ISO 42001, EU AI Act compliance, GPAI obligations, international commitments, incident reporting.
48
EE
External Engagementpreliminary
Survey participation, research support, transparency, behavior specs, open-source contributions.
54

Social Impact & Safety Profile

Moderate

Abnormal Security uses behavioral AI to detect email-borne threats including AI-generated phishing, business email compromise, and social engineering. Their platform is increasingly relevant as generative AI enables more sophisticated attack campaigns at scale.

ai-powered threat detectionsocial engineering defense

Peer Comparison

Trail of Bits
B+62

Application Security

Compare
Snyk AI Security
B-52

Application Security

Compare
Zenity
B-48

Application Security

Compare
Confident Security
C+47

Robustness & Adversarial

Compare
Compare side-by-side →

Data Sources & Methodology

Scoring methodology v0.1 · 40 indicators · 6 frameworks

Last assessment: 2026-03-23 · Confidence: medium · Evidence: 5 items

NIST AI RMF · EU AI Act · ISO 42001 · FLI AI Safety Index · MLCommons AILuminate · METR

How is this company scored? →Full methodologyView in Screener

Scores reflect publicly available information. A low score may indicate limited transparency rather than poor safety practices.