Led by HV Capital, with participation from new strategic investor T.Capital and existing backers like Atomico, Firstminute Capital, and System.One, this round brings our total funding to $32.5 million. The capital will fuel platform advancements, expand our footprint in the US and EMEA, and bolster partnerships to capture even more market share. Coming off a banner year with 7x revenue growth, 4.4x customer expansion, and revenue targets smashed by 62%, Mondoo is poised to redefine how organizations tackle vulnerabilities.

We're also excited to welcome Thomas Tschersich, CEO of Telekom Security and CSO of Deutsche Telekom AG, as a Board Advisor.

“The speed and accuracy of Mondoo’s platform, combined with its deep insights into IT architecture, enables customers to quickly remediate issues and significantly reduce CVEs and policy violations.” - Thomas Tschersich, CEO Telekom Security & CSO Deutsche Telekom AG

Cybersecurity needs a new proactive approach

Cyber threats are evolving at an alarming rate. In 2024 alone, the National Vulnerability Database logged over 40,000 new CVEs - a staggering 39% jump from the previous year. Add in misconfigurations and policy drift, and attack surfaces are ballooning. Legacy vulnerability management tools overwhelm teams with endless alerts, force reliance on fragmented systems, and often stop at identification, leaving remediation as an afterthought.

“Mondoo’s Agentic Vulnerability Management marks a true shift in cybersecurity. By automating manual work and preventing recurring vulnerabilities, the platform delivers measurable ROI and dramatically cuts mean time to remediate.” - Barbod Namini, General Partner, HV Capital

Mondoo Agentic Vulnerability Management

As attackers weaponize flaws with AI speed, defenders need a paradigm shift. Enter Mondoo's Agentic Vulnerability Management: a context-aware, AI-native platform that doesn't just detect issues - it fixes them autonomously while ensuring transparency and control.

Mondoo’s AI agents:

• Continuously monitor infrastructure across cloud, on-prem, SaaS, endpoints, and SDLC
• Detect vulnerabilities and policy violations
• Prioritize issues by real business impact and exploitability
• Generate transparent remediation code that can be applied semi- or fully autonomously
• Integrate with ITSM systems to create, track, and close tickets automatically
• Detect and instantly fix drift
  

This approach automates the full workflow – from detection to resolution, and stops issues from recurring again, which is why Mondoo is the Fix Now. Fix Forever.^™ company.

“By pairing autonomous remediation with built-in governance and transparency, Mondoo is proving that AI can deliver both speed and safety at scale. Their rapid growth and strong customer adoption are clear signs this model is the future of enterprise security.” - Sasha Vidiborskiy, Partner, Atomico

Mondoo’s AI-native security model

At the heart of Mondoo is a patented, AI–native security model that gathers deep, contextual data from across your entire infrastructure - cloud, on-prem, SaaS, endpoints, and the full software lifecycle. This foundation powers our AI agents to monitor, prioritize, and remediate with precision. 

• Mondoo collects data from the IT infrastructure, normalizes and enriches all findings with context and meaning, ensuring that our AI agents make decisions based on deep, contextual understanding rather than siloed data points.
• The Mondoo Intelligent Model goes beyond traditional data storage to create a living, breathing map of your infrastructure's security landscape. This intelligent knowledge system understands the intricate relationships between your assets, configurations, and vulnerabilities.
• Specifically designed for searching and filtering infrastructure configuration data, the Mondoo Query Language (MQL) empowers Mondoo agents to perform granular searches and data retrieval from complex infrastructure environments. 
• Mondoo’s AI Processor manages three specialized AI agents for prioritization, orchestration, and remediation.
• Mondoo intelligence can be consumed through your preferred interface - whether it's our intuitive GUI, powerful CLI, seamless CI/CD integrations, or chat interface.

The Mondoo agents

Mondoo’s agents work autonomously to deliver fast and accurate vulnerability management:

#1. Prioritization agent

This agent intelligently identifies what matters most in your environment by considering exploitability, exposure, compliance implications, and business criticality. This reduces noise and alert fatigue, and by only sending critical issues to IT Ops, reduces friction between security and IT.

#2. Orchestration agent

This agent streamlines security workflows end-to-end across your entire stack. The agent integrates seamlessly with ITSM systems to create tickets with the necessary asset details and remediation information, auto-close resolved issues, and reopen them if drift occurs. SLAs are automatically tracked. No more relying on spreadsheets or working in silos—just efficient collaboration across security, IT, and engineering.

#3. Remediation agent

This agent delivers precise, actionable fixes to eliminate risks, shrinking mean time to remediate (MTTR) from weeks to hours. Get root cause analysis, guided steps, and pre-tested code via Ansible, Terraform, or Intune. Transparent pipelines allow for review, approval, versioning, and instant rollback, balancing speed with governance.

Watch this video to see how Mondoo performs autonomous patching:

‍

Not just marketing talk, but already delivering

Mondoo’s unified workflow - from detection to resolution - is already being used by companies of all sizes, including major enterprises, such as Deutsche Telekom AG, a leading U.S.-based automotive manufacturer, and a Fortune 10 technology company. 

"The Mondoo agentic vulnerability patching with Ansible integrated in our Github environment is really taking our infrastructure as code to another level. With the continuous scan of our assets and the automated creation of remediation pull requests we are now able to fix vulnerabilities without much effort. The "Renovate Bot"-style approach integrates neatly into our existing workflows. Furthermore it is reducing maintenance efforts to a single click." -Alexander Voss, DevOps Engineer at Agido

Conclusion

This is not the time for half measures in cybersecurity. The only real way to ensure that issues are fixed before attackers exploit them is by moving at machine speed. With AI agents continually scanning your environment for vulnerabilities, instantly suggesting fixes and autonomously patching them, organizations now have a platform that can actually get them there. 

Learn more

Want to see how Mondoo can help you drastically accelerate your MTTR and improve your security posture? Schedule a demo with one of our experts.