The Criticality Collapse is upon us
We wrote a blog post 6 months ago titled “the Curious Case of the 10.0 CVSS Score”, and the industry was in shock: 2024 had produced an unprecedented 231 vulnerabilities rated a perfect 10.0. It seemed like an anomaly, a statistical outlier in the Common Vulnerability Scoring System’s twenty-year history. Fast‑forward to today this year […]
O Inspector, where art thou?
The number one question we hear at Innoculator from clients is “Where or how should I install the Inspectors?” and to be fair, it’s a good question. Unfortunately, the answer isn’t necessarily straight forward. However, the design rationale and why part of this discussion are for another blog post. Today we will simply ask the […]
Bridge over the Patch Gap: How Innoculator Helps Australian Companies Achieve Essential Eight Compliance
If you operate in Australia, you’ve likely heard of the Australian Cyber Security Centre’s (ACSC) Essential Eight — the government’s recommended baseline strategies to mitigate cyber threats. On paper, the Essential Eight is straightforward: patch your systems, control your applications, harden your defences, and protect your data. In practice, however, many organisations hit the same […]
Rethinking Cybersecurity Pricing: Introducing Innoculator Pricing
At Innoculator, we believe cybersecurity should be accessible, predictable, and aligned with how modern teams actually operate. Too often, businesses are forced into complicated licensing structures, endless feature tiers, or pricing that scales unpredictably as they grow. That changes today. We’re excited to announce a bold new approach to cybersecurity pricing: US$10 per workload, per […]
Log4J- the Broken Record Edition
Yes, I know we tend to harp on about Log4J on this blog, and apologies for that upfront, but recent events have highlighted the importance of getting this fixed. If I was to say “Mango Sandstorm” to you, you could be excused for thinking this was an exotic cocktail. In this case however, we are […]
EternalBlue: Tell me, what can I do?
Apologies upfront, in writing this blog I couldn’t resist using lyrics from the Icehouse 1987 hit Electric Blue in the heading. In the ever-evolving landscape of cybersecurity, few vulnerabilities have had as lasting an impact as EternalBlue. Originally developed by the U.S. National Security Agency (NSA) and leaked by the Shadow Brokers in 2017, this […]
How to protect CVE-2021-44228 / Log4Shell using Innoculator
Currently at Innoculator, the team are deep in testing our platform before making it generally available to the public (Not long now…). But whilst we are doing this, I thought I would share how easy (and groundbreaking) Innoculator makes it to virtually patch something as common as Log4Shell. I know we talk about this vulnerability […]
The importance of Lateral Movement in Defence Plans
In the ever-evolving landscape of cybersecurity, lateral movement remains one of the most underestimated tactics utilised by attackers. While organizations often focus on securing their perimeters, the internal pathways that attackers exploit to move laterally within networks are frequently forgotten. This oversight can have devastating consequences, as lateral movement is a critical phase in an […]
2024 –The curious case of the 10.0 CVSS score
As we look back at the cybersecurity landscape over the past few years, it is clear that 2024 stands out as a remarkable year in terms of the sheer volume of critical vulnerabilities discovered. However, one thing sticks out like a sore thumb. The number of CVEs (Common Vulnerabilities and Exposures) with a perfect CVSS […]
Innoculator version 1.0 released
What happens when you combine AI with virtual patching? You solve the vulnerability and legacy software problem. Melbourne, Australia – After a year of dedicated development, we are thrilled to announce the release of Innoculator, an AI-powered application protection platform. Innoculator is designed to provide virtual patches for any known vulnerability, including those in legacy […]