Mondoo in the News

New Shai Hulud 3.0 malware variant raises fresh supply chain security concerns

A newly discovered third variant of the Shai Hulud malware is raising fresh concerns about the security of the open-source software supply chain.

3.0 is an "indiscriminate 'fire and forget' weapon with no way of calling off the attack."

Shai-Hulud malware 3rd variant detected as supply chain threat

Security researchers warn that the latest version of Shai-Hulud shows more sophistication and improved stealth than earlier campaigns, targeting the npm ecosystem.

The rapid evolution of Shai Hulud shows how attractive the software supply chain has become to attackers.

Dom Richter, Co-Founder at Mondoo – Interview Series

Dom Richter discusses how Mondoo reduced customer vulnerabilities by 60% and their vision for AI-driven automated remediation.

There must be a simple button I can press to fix these things.

Actively Exploited WSUS Bug Added to CISA KEV List

CISA adds critical Windows Server Update Services vulnerability to its Known Exploited Vulnerabilities catalog, urging immediate patching.

Business Briefing: DevOps Security Threats

CyberWire Business Briefing covers the week's top security business news, including Mondoo's latest threat research and industry analysis.

Risky Bulletin: Clever worm hits the DevOps scene

Security researchers spot GlassWorm, a self-propagating worm targeting the VS Code extensions ecosystem, following the Shai-Hulud npm attacks.

Maximum severity Red Lion RTU vulnerabilities detailed in new report

Two CVSS 10.0 vulnerabilities in Red Lion industrial RTUs could give attackers complete control over critical infrastructure systems.

These two CVEs together are a deadly combination... a hacker can take complete control of the system, bypass all security, and cause significant and dangerous disruptions to any connected industrial control systems.

The Windows 10 Era Is Over: The Real Security Fallout Starts Now

Windows 10 reaches end of life on October 14, 2025, turning an estimated 600 million devices into potential breach points without security updates.

Mondoo Raises $17.5M In Additional Funding

Mondoo raises $17.5M to accelerate its agentic vulnerability management platform, bringing total funding to $32.5M.

Business Briefing: Mondoo Funding Round

CyberWire Business Briefing covers Mondoo's $17.5M funding round led by HV Capital for its agentic vulnerability management platform.

Pro Rata: Mondoo Raises $17.5M

Axios Pro Rata newsletter covers Mondoo's Series A extension, highlighting its AI-driven approach to vulnerability management.

Mondoo Raises $17.5M for AI Vulnerability Management

TechNews180 covers Mondoo's funding round, highlighting its use of AI agents to automate vulnerability remediation.

AI Agenda Live: Mondoo Funding Coverage

The Information covers Mondoo's $17.5M funding as part of its AI industry coverage.

Mondoo raises $17.5M to fix software vulnerabilities with AI agents

Mondoo raises $17.5M Series A extension to accelerate its agentic vulnerability management platform that uses AI to automate security remediation.

Mondoo Raises $17.5 Million for Vulnerability Management Platform

SecurityWeek reports on Mondoo's $17.5M funding round, highlighting its AI-powered agentic approach to vulnerability remediation.

Term Sheet: Mondoo Raises $17.5 Million

Fortune's Term Sheet newsletter reports Mondoo raises $17.5M led by HV Capital for its vulnerability management platform for agentic AI.

Transforming Security: From Attacker to Defender with Mondoo's Dominik Richter

Dominik Richter joins Alan Shimel to discuss how Mondoo is transforming vulnerability management with AI-driven automation.

We have to get better at fixing vulnerabilities. The victims are real, as is the damage.

This Week in AI Agent News

AI Agent Store covers Mondoo's agentic approach to vulnerability management in their weekly AI agent industry roundup.