Barracuda launches managed vulnerability security for stronger cyber resilience

Barracuda Networks has introduced a new managed security service aimed at supporting organisations in proactively detecting, assessing and addressing vulnerabilities across their IT environments.

The service, known as Barracuda Managed Vulnerability Security, is an enhancement to the existing BarracudaONE platform and is operated through the company's global Security Operations Centre (SOC). It provides end-to-end vulnerability scanning, analysis, and reporting, covering on-premises networks and cloud infrastructure.

Detection and coverage

The offering is designed to uncover vulnerabilities in a wide range of endpoints including servers, IoT devices, firewalls, and other network-connected systems, with or without a known exploit being publicly available. The service aims to address a growing trend, highlighted in the recent 2025 Data Breach Investigations Report, which noted a 34% rise in the exploitation of vulnerabilities as an initial access vector since 2024. The report also found that while significant efforts were made to patch device vulnerabilities over the past year, only 54% were fully remediated, and the average remediation time stood at 32 days.

Barracuda Managed Vulnerability Security delivers detailed, actionable reports after each scan. These include an audit summary as well as a prioritised remediation plan. Such reporting is intended to help organisations gain clear insights into their risk exposure and to make well-informed decisions that are consistent with their security strategies and compliance obligations.

"By proactively identifying vulnerabilities, we can better predict the likelihood of an attack, giving both Barracuda and our customers a decisive edge to stop threats before they're exploited and reduce cyber risk," said Adam Khan, Vice President of Global Security Operations at Barracuda. "Barracuda Managed Vulnerability Security delivers deep visibility into risks across environments – without the burden of managing additional tools or hiring hard to find and retain security operations specialists. With expert guidance and smart prioritisation, it streamlines remediation and transforms how organisations manage vulnerabilities and defend against today's sophisticated attacks."

Regulatory compliance

Regular vulnerability scanning, according to Barracuda, is instrumental for organisations striving to meet various legislative and industry standards. This includes the Digital Operational Resilience Act (DORA), Network Information Security 2 (NIS2), General Data Protection Regulation (GDPR), Health Insurance Portability and Accountability Act (HIPAA), and Payment Card Industry Data Security Standard (PCI DSS). By supporting continuous risk assessment and audit-readiness, the service is designed to help organisations comply with such frameworks.

Deployment and integration

Barracuda Managed Vulnerability Security is now available through the company's network of resellers and managed service providers. It can function as a standalone service or be integrated with Barracuda Managed XDR, the company's 24/7/365 threat detection and response offering that utilises AI analytics and threat intelligence. When deployed together, organisations have access to a unified, managed security experience, which streamlines vendor management, improves detection and remediation, and may increase operational efficiency for security teams.

Partner feedback

Barracuda's partners have provided feedback regarding the new service's practicality in operational settings. Dominik Meier, Chief Technology Officer at Vistasys AG, commented, "The new Barracuda Managed Vulnerability Security offers an easy and effective way to identify vulnerabilities across our customers' environments. All we need to do is register the appliances for vulnerability scanning, and Barracuda's SOC team handles the rest. They perform the scanning and deliver a clear report with actionable recommendations. This not only strengthens our customers' security but also saves us valuable time and internal resources."

Alberto Ramos-Izquierdo, Chief Executive Officer at RIZQ, shared his experience: "As an MSP, we tested Barracuda Managed Vulnerability Security with one of our largest critical infrastructure clients that had struggled with other tools, and the results were immediate and impressive. Barracuda uncovered serious vulnerabilities in areas the client thought were secure and delivered a clear, prioritised remediation list that was easy to act on. This isn't just another scanner – it's a strategic, expert-driven solution that aligns with our risk and compliance programs. Where other tools overwhelm with hundreds of pages of complex analysis, Barracuda simplifies the process with a focused top 25 list that drives action. It's now a core part of our managed security services, and we're rolling it out across our customer base because true cyber resilience requires ongoing visibility, not reactive guesswork."

The release of Barracuda Managed Vulnerability Security comes amidst ongoing industry challenges in vulnerability detection and remediation, as adversaries increasingly leverage software and hardware weaknesses as vectors for initial compromise. The introduction focuses on addressing both technology and personnel resource gaps that exist for many organisations managing large or diverse IT estates.