Vicarius Raises USD 30M for its AI-backed Vulnerability Remediation Platform

Highlights:

• Vicarius offers a software platform called vRx that can map all the programs operating on the systems within a company’s network and catalog them.
• Vicarius plans to expand the feature set of its platform using the capital raised from this fresh fundraising round.

Vicarius Inc., a firm that assists businesses in identifying and resolving software vulnerabilities, announced the completion of a USD 30 million investment round.

The venture capital firm Bright Pixel Capital spearheaded the Series B investment, which focuses on cybersecurity. AlleyCorp, Strait Capital, and AllegisCyber Capital joined.

Based in New York, Vicarius offers a software platform called vRx that can map all the programs that are operating on the systems within a company’s network and catalogue them. It then looks for vulnerabilities in those programs. Vicarius claims that if an application has an open-source component with a known security problem, vRx will immediately flag it.

The platform also detects zero-day exploits or security flaws that the cybersecurity community isn’t yet aware of. An artificial intelligence engine that looks for recurring patterns in application vulnerabilities is used to do this. The engine can identify an application’s code that might have a zero-day vulnerability by comparing it to certain standard patterns.

In addition to identifying vulnerabilities, vRx claims to assist administrators in fixing them. With just a few clicks, an application’s security updates can be downloaded using the patching tool included with the platform. Administrators can schedule the download later if it is not practicable to deploy the update immediately.

Vulnerabilities cannot always be patched. This problem usually arises for companies when researchers discover a security flaw in an application, but the developer hasn’t released a fix yet. There are other circumstances in which it is not practicable to install a patch—a process that usually involves downtime—because the impacted workload is too crucial to be taken down.

Vicarius says the problem can be solved with its vRx platform. It does this by utilizing a feature known as Patchless Security to safeguard a susceptible workload without patching it.

Applications are mostly composed of functions, which are short pieces of code that carry out a single task or a group of related tasks. When an application’s vulnerability is found, vRx can pinpoint the impacted functions. The platform then sets itself up to automatically identify and stop cyberattacks that try to compromise the weak points.

According to the business, its Patchless Security feature also thwarts other kinds of cyberattacks. It can stop attempts to breach data from applications’ memory. Additionally, vRx recognizes when malware tries to pass for a genuine program to read the files that the program can access.

Vicarius plans to expand the feature set of its platform using the capital raised from this fresh fundraising round. The goal is to increase vRx’s AI capabilities in particular.

It unveiled vuln_GPT, a large language model, for the platform in August. The model generates scripts on its own to address newly found application vulnerabilities. For instance, it can create a script to disable the part of the code with the security fault or isolate a vulnerable application until a patch is ready.

Additionally, Vicarius plans to use some funds for client acquisition campaigns. More than 400 companies are currently part of the company’s installed base, including major corporations like PepsiCo Inc. and Hewlett Packard Enterprise Co.