Award-winning exploit intelligence start-up VulnCheck expands to Asia

Cybersecurity used to be a waiting game — respond after breach, patch after damage. VulnCheck, a fast-growing cybersecurity intelligence start-up, is quietly rewriting that script, making proactive cyber defence possible for organisations worldwide. This year, it joined the CyberBoost Catalyse Programme by CyberSG TIG Collaboration Centre to fast-track their growth plans in Asia. 

Cyberattacks today are faster, smarter, and more devastating than ever. According to the Singapore Cybersecurity Health Report, eight in 10 organisations here experienced an attack in 2023 - with ransomware attacks costing an average of around SGD 1.5 million per incident. Hitting close to home, major cyberattacks in Singapore include the ransomware attack on Law firm Shook Lin & Bok last year, and the 2018 SingHealth data breach where the personal information of 1.5 million patients were stolen.

In 2024 alone, more than 40,000 new Common Vulnerabilities and Exposures (CVEs) were identified globally — a near 40% jump from the previous year — making the manual tracking and prioritisation of cyber threats virtually impossible.

Countering ticking time bombs in cyberspace with automated intel

For decades, organisations have been grappling with the daunting challenge that never goes away - how to prioritise the vulnerabilities that truly matter in defending against emerging cyber attacks.

Threat intelligence expert, Anthony Bettini founded cybersecurity start-up, VulnCheck in 2022 because none of the conventional vulnerability management tools he tried actually worked. They were all built for manual analysis, slowing response time and action.

“We knew the industry needed better data, faster; to eliminate human interference in intelligence curation and collection, and to solve the problem entirely in software.” - Thomas Bain, Chief Marketing Officer at VulnCheck.

Unlike conventional vulnerability management tools that cover only about 30% of known vulnerabilities, VulnCheck delivers curated data intelligence in real-time — fully automated, machine-readable, and built for action, not manual interpretation. 

In an era where critical vulnerabilities are ticking time bombs, VulnCheck’s real-time intelligence insights empower security teams to stay ahead of emerging cyber threats.

"Our system maintains over 400 million records on all CVEs, refreshing multiple times daily — unmatched in the industry. We then distil it down to the top 2 to 3% of vulnerabilities that are weaponised, exploited or likely to be exploited," said Tom.

VulnCheck’s solution turns traditional vulnerability management on its head. Tom added, “Our constantly refreshed data means customers always have the latest intelligence by default - no need to scan environments to uncover vulnerabilities.”

A boom in demand for curated vulnerability and exploit intelligence

VulnCheck is solving one of cybersecurity’s biggest challenges — and people are taking notice.  As at Q1 2025, VulnCheck has over 40 enterprise customers, including Fortune 500 companies, and government clients from the U.S., Singapore, Israel, and the UK.

In March 2025, it secured US$12 million in an oversubscribed Series A funding round led by Ten Eleven Ventures, with participation from Sorenson Capital and IQT (In-Q-Tel). The start-up also achieved 3x year-over-year Annual Recurring Revenue (ARR) growth, a 158% customer growth rate, and a 100% customer retention rate.      

Winning Startup of the Year at the 2024 Massachusetts Technology Leadership Council (MTLC) Tech Top 50 awards was icing on the cake. VulnCheck has also grown its installed base for its Community tier of solutions, where it offers free intelligence tools available for anyone to use. The company now has over 10,000 users worldwide with its intelligence shipping in hundreds of cyber platforms globally.

Plugging into the global cyber innovation ecosystem through CyberBoost Catalyse

VulnCheck is one of 10 chosen start-ups in the first cohort of for the CyberBoost Catalyse programme by the CyberSG Talent, Innovation and Growth Collaboration Centre (The Centre), powered by UK innovation firm Plexal. The Centre is a joint initiative between the National University of Singapore (NUS) and the Cyber Security Agency of Singapore (CSA).

The six-month accelerator programme helps cybersecurity start-ups master their growth strategy, build global connections, tap into investments, commercial opportunities and immerse themselves in cyber ecosystems inSingapore, the UK and beyond. Start-ups under the programme can also leverage co-working spaces at The Centre in Singapore, and BLOCK71 nodes in key tech hubs worldwide for their market expansion.

Milestones | 📍Series A

2025: Series A round raised US$12M led by 1011 Venture; selected as Finalist in Black Hat Asia 2025 startup spotlight competition; positioning to triple the business for a second straight year.

2024: Selected as a finalist in RSAC Innovation Sandbox; closed out seed round of funding at US$7.9M with investment from Sorenson Capital, IQT and NextEra Energy Investments; participated in CyberBoost Catalyse; closed the year tripling revenue from FY 2023

2021: VulnCheck was founded by Anthony Bettini , who previously led research at Tenable and founded FlawCheck and Appthority

Strengthening Singapore’s cyber defence and expanding internationally

Since joining CyberBoost Catalyse, VulnCheck has connected with private and public sector players alike. The start-up showcased at global events like GovWare and pitched at Cybersecurity Innovation Day 2024, while a recent visit to Singapore early this year resulted in talks with potential design partners to co-build next-gen solutions.

VulnCheck plans to expand its go-to-market team and accelerate growth, with Singapore anchoring its broader Asia-Pacific strategy. The start-up’s expansion plan includes continued growth in enterprise business, sparking opportunities not only to grow its presence in the broader Asia-Pacific market, but to foster deeper collaboration with customers and partners in all markets.

"We are growing our global reach through an expanded network of resellers and Managed Security Service Providers (MSSPs) and continue adding cybersecurity organisations to our installed base, enriching their products with VulnCheck data," said Tom.

By introducing its cutting-edge exploit intelligence platform to Singapore’s enterprises and critical infrastructure sectors, VulnCheck is helping to fortify the country’s digital defence at a time when cyber threats are growing more complex and pervasive.

As cyber threats escalate in a hyperconnected world, VulnCheck’s rise marks a definitive shift from reactive defence to predictive capabilities to respond as quickly as possible to emerging cyber threats.

🖱️ More about CyberBoost Catalyse (Applications open June 2025): https://www.plexal.com/our-work/cyberboost-catalyse/

🌐 Connect with VulnCheck: https://vulncheck.com