PRESS RELEASE

BOSTON, Mass. " May 6, 2009 " Rapid7, the leading provider of unified vulnerability management solutions, today announced its continued expansion into the federal government market through its partnership with IT Federal Sales and the addition of Rapid7 products to its General Services Administration (GSA) Schedule (under contract #GS35F0494T). Now, government agencies can significantly reduce their risk profile by using Rapid7 NeXpose's advanced capabilities for detecting and prioritizing vulnerabilities across multiple assets, including Web applications and databases.

A report by the Identity Theft Research Center, a non-profit organization that has been tracking security breaches for the past three years, stated that almost 20 percent of all 2008 data breaches occurred in the government sector. With this increase in sophisticated security threats, government organizations must adopt a proactive defense-in-depth security practice. Rapid7's partnership with IT Federal Sales, a federal contractor serving federal, state and local agencies, provides the government market with the ability to know, analyze and remediate real threats in Web applications, databases, networks, operating systems and other software before breaches and data loss can occur. Leveraging NeXpose, IT Federal Sales' customers can now achieve complete visibility into an enterprise-class IT infrastructure and benefit from remediation guidance, policy and compliance reporting, and roles-based administration.

"Our federal customers need a trusted vulnerability management solution that provides the broadest asset protection with notification and prioritization of threats. Rapid7 reduces the noise and false positives versus other vulnerability management solutions and provides great value to government agencies," said Paul Cino, president of IT Federal Sales. "We are excited about offering joint solutions with Rapid7 in the federal government market."

"Government systems hold a wealth of sensitive information, and, given their complex and dynamic infrastructure, they are at higher risk to vulnerabilities and exploits. At the same time, budget and staff reductions are increasing their risk profile," said Mike Tuchen, president and chief operating officer of Rapid7. "NeXpose is a trusted solution that has been serving local, state and federal agencies with vulnerability management and remediation plans that not only increase security but free up staff time to focus on other priorities. By partnering with IT Federal Sales and having our products available on the GSA Schedule, we can now provide even more agencies with the benefits of NeXpose."