Rapid7's NeXpose Vulnerability Management Engine Powers Trend Micro's SecureSite Hosted Service

PRESS RELEASE

BOSTON, Mass. and CUPERTINO, Calif. - December 2, 2008 - Rapid7 LLC, the leading provider of Unified Vulnerability Management solutions, and Trend Micro Incorporated (TSE: 4704), a global leader in Internet content security, today announced that Rapid7 NeXpose is the vulnerability management engine inside Trend Micro SecureSite, a new hosted, Web-threat vulnerability scanning service for e-commerce Web sites.

Trend Micro SecureSite helps e-businesses safeguard their sites from malicious threats, helps with Payment Card Industry Data Security Standard (PCI DSS) compliance and protects online shoppers from hackers attempting to steal credit card numbers and passwords. By continually assessing and monitoring their sites with Trend Micro SecureSite to protect customer data, e-businesses strengthen their credibility and reputation, thus increasing their potential revenue.

Trend Micro SecureSite can perform automated daily scans for Web threat vulnerabilities and weaknesses across databases, networks and operating systems as well as multiple Web applications and Web 2.0 (JavaScript, AJAX). Reports are generated automatically that identify higher risk exposures, help customers prioritize and provide expert remediation guidance from TrendLabs for addressing problems quickly. Trend Micro SecureSite's Web-based console displays daily status reports on vulnerabilities and offers a variety of alerting options.

Trend Micro SecureSite monitors Web application vulnerabilities such as cross-site scripting (XSS), SQL injection, data leaks, XPath injection and bot attacks as well as a broad range of other vulnerabilities, which may arise as a Web site's content changes or new functionality is added. Trend Micro SecureSite can detect weaknesses and vulnerabilities such as viruses, malware, spyware and other malicious Web threats that can cause data losses during online transactions, further identity theft and set off denial of service attacks.

Available through Trend Micro channel partners, Trend Micro SecureSite is backed by TrendLabs, Trend Micro's global network of research, service and support centers committed to constant threat surveillance and attack prevention. The solution requires no additional hardware or software to deploy or install.

"Cross-site scripting is now the leading type of vulnerability found today, which means that site-specific vulnerabilities continuously emerge and evolve, even on legitimate Web sites," said Richard Ku, vice president, SMB product management at Trend Micro. "With NeXpose's leading-edge Web vulnerability management technology as the Trend Micro SecureSite engine, we can provide high-performance monitoring that is critical for businesses of all sizes that are trying to develop an online presence, and whose revenue and brand depends on the security of their Web site."

"Owners of e-commerce sites can safeguard their investment by defending against Web threats and providing assurance to customers that credit card and personal data will be protected," said Mike Tuchen, president and chief operating officer at Rapid7. "Using Trend Micro SecureSite is an easy and cost-effective way for businesses who accept credit cards to obtain help with PCI DSS compliance." Trend Micro SecureSite is currently available as a 30-day trial. Please visit: http://us.trendmicro.com/us/products/sb/securesite/

About Trend Micro: Trend Micro Incorporated, a global leader in Internet content security, focuses on securing the exchange of digital information for businesses and consumers. A pioneer and industry vanguard, Trend Micro is advancing integrated threat management technology to protect operational continuity, personal information, and property from malware, spam, data leaks and the newest Web threats. Visit TrendWatch at www.trendmicro.com/go/trendwatch to learn more about the threats. Trend Micro's flexible solutions, available in multiple form factors, are supported 24/7 by threat intelligence experts around the globe. Many of these solutions are powered by the Trend Micro Smart Protection Network, a next generation cloud-client content security infrastructure designed to protect customers from Web threats. A transnational company, with headquarters in Tokyo, Trend Micro's trusted security solutions are sold through its business partners worldwide. Please visit www.trendmicro.com.

About NeXpose Rapid7 NeXpose is the broadest and deepest vulnerability management system on the market, providing comprehensive, high performance coverage of networks, databases, operating systems, and Web applications. Only NeXpose provides browser-based Web application vulnerability scanning of Web 2.0 applications and secures the complete Web application - from browser to server. NeXpose detects more vulnerabilities than traditional Web scanners by using Web Application Pass-Through Scanning, a unique capability for exploring how one vulnerability can lead to another.

NeXpose delivers extensive reports assessing risks and proposing streamlined remediation plans to optimize security and compliance with governmental regulations and corporate security policies. Rapid7 is an Approved Scanning Vendor (ASV) by the Payment Card Industry (PCI) Security Standards Council, certifying NeXpose to support retail operations in achieving PCI compliance.

About Rapid7 Rapid7 is a leader in vulnerability management and compliance, delivering a single unified solution across an organization's entire infrastructure. Rapid7 NeXpose is the only solution that includes support for web applications, databases, operating systems, and network devices in a single system. NeXpose uncovers "hidden" threats that other systems cannot find, while at the same time separating these real threats from excessive "false positive" noise common to most vulnerability management systems. Organizations, including Black & Decker, Trader Joe's, Florida State University, the New York Times, and the City of Philadelphia, continually rely on Rapid7 to mitigate risk and remain compliant. For more information, visit www.rapid7.com<../Users/mtuchen/AppData/Local/Microsoft/Windows/Temporary%20Internet%20Files/Content.Outlook/G5O8ONSB/www.rapid7.com>.