Latest news with #MehranFarimani
Business Wire
10-07-2025
- Business
- Business Wire
Azul and RapidFort Partner to Deliver Near-Zero CVE Enterprise Grade Java Container Images, Backed by Commercial Java Support
SUNNYVALE, Calif. & PALO ALTO, Calif.--(BUSINESS WIRE)-- Azul, the only company 100% focused on Java, and RapidFort, the industry leader in software supply chain security, today announced a strategic partnership to deliver near-zero Common Vulnerabilities and Exposures (CVEs) third-party container images backed by Azul's world-class Java support. This partnership, which combines Azul's entire commercial Java portfolio, including Azul Platform Core and Azul Platform Prime, with RapidFort Curated Images, will accelerate developer productivity and reduce the burden of security patching while enabling secure software development practices to protect the software supply chain. Strategic collaboration between Azul and RapidFort aims to dramatically reduce security patching burden and strengthen software supply chain security for enterprise Java customers. Share The partnership comes at a critical time as organizations face mounting pressure to secure their software supply chains amid escalating cyber threats. According to Verizon's 2025 Data Breach Investigations Report, the exploitation of vulnerabilities (CVEs) has seen another year of growth and will surpass credential abuse as the #1 security attack vector by 2026. This places an enormous burden on both security and developer teams who must continuously patch and update systems. Transforming Container Security RapidFort and Azul have joined forces to redefine how enterprises secure and run Java workloads in containers. By combining RapidFort's advanced container optimization technology with Azul's Platform Core and Platform Prime runtimes for Java 8 and later, organizations can now deploy hardened Java containers with unprecedented efficiency and security. These jointly curated images reduce vulnerabilities by up to 90%, significantly shrinking the attack surface. As a result, development teams benefit from less frequent patching and greater productivity, accelerating innovation without compromising security. Unlocking Value Across Security, Speed, and Costs The Azul/RapidFort partnership delivers several significant advantages for enterprise customers, including: Reduced Patching Burden: Near-zero CVE container images mean fewer vulnerabilities to patch, allowing security teams to focus on more strategic initiatives. Enhanced Supply Chain Security: Hardened container images provide a secure foundation for the entire software development lifecycle. Accelerated Development: Developers can build applications faster without compromising security. Regulatory Compliance: Compliance is made easier despite increasingly stringent security regulations and frameworks such as NIS2, CMMC and FedRAMP. Lower Operational Costs: Maintenance burden and risk of security incidents is dramatically reduced. 'Enterprises are drowning in security vulnerabilities and patches,' said Mehran Farimani, founder and CEO of RapidFort. 'Our partnership with Azul allows us to provide customers with hardened container images that are not only more secure by design but require significantly less ongoing maintenance. This is a game-changer for organizations looking to strengthen their security posture while reducing operational overhead.' 'Java remains the backbone of enterprise applications worldwide, and securing the Java ecosystem is critical to protecting the software supply chain,' said Scott Sellers, co-founder and CEO at Azul. 'By partnering with RapidFort, we're enabling organizations to deploy Java applications with confidence, knowing they're backed by Azul's world-class support organization and built on a foundation of security-hardened container images with minimal vulnerability exposure.' Availability The first set of jointly developed hardened container images is available immediately. These images will include all Java LTS (Long Term Support) releases starting with Java 8, and popular Java applications such as Apache Spark, Apache Kafka and Apache Tomcat. Interested customers can request more information here. For more information: About Azul Headquartered in Sunnyvale, California, Azul provides the Java platform for the modern cloud enterprise. Azul is the only company 100% focused on Java. Millions of Java developers, hundreds of millions of devices and the world's most highly regarded businesses trust Azul to power their applications with exceptional capabilities, performance, security, value, and success. Azul customers include 36% of the Fortune 100, 50% of Forbes top 10 World's Most Valuable Brands, all 10 of the world's top 10 financial trading companies. and leading brands like Avaya, Bazaarvoice, BMW, Deutsche Telekom, LG, Mastercard, Mizuho, Priceline, Salesforce, Software AG, and Workday. Learn more at and follow us @azulsystems. About RapidFort RapidFort is a software supply chain security platform that secures and optimizes modern infrastructure by reducing the attack surface of containerized applications and near-zero CVE, curated base images. Through continuous monitoring and intelligent removal of unnecessary components from container images, RapidFort significantly minimizes vulnerability exposure and patching requirements. This innovative approach enhances security posture, improves operational efficiency, and ensures end-to-end protection across the global software supply chain. The company's innovative approach has been recognized by leading industry analysts and is trusted by Global 2000 companies across finance, healthcare, and government sectors. For more information, visit
Yahoo
27-05-2025
- Business
- Yahoo
RapidFort and Carahsoft Partner to Streamline Public Sector Compliance and Bolster Federal Software Defenses
Partnership Strengthens Software Security and Streamlines Compliance With Critical Regulatory Frameworks SAN FRANCISCO and RESTON, Va., May 27, 2025 (GLOBE NEWSWIRE) -- RapidFort, the fastest growing cybersecurity company securing the global software supply chain, and Carahsoft Technology Corp., The Trusted Government IT Solutions Provider®, today announced a partnership. This partnership enhances Carahsoft's portfolio with RapidFort's software supply chain security platform and curated near-zero CVE images, enabling Public Sector organizations and Government agencies to proactively reduce vulnerabilities by 95% and fast-track Federal Risk and Authorization Management Program (FedRAMP®) and CMMC compliance by months. Under the agreement, Carahsoft will serve as RapidFort's Public Sector distributor, making the company's solutions available through Carahsoft's reseller partners and NASA Solutions for Enterprise-Wide Procurement (SEWP) V contract and E&I Cooperative Services Contract contracts. 'Carahsoft and its reseller partners are proud to provide our customers with a powerful, DoD-trusted platform that enables them to improve their software security and significantly reduce their time to compliance,' said Craig P. Abod, Carahsoft President. 'With RapidFort as part of our portfolio, organizations can now build more secure software, maintain continuous compliance and meet the highest Federal security standards more efficiently and effectively.' Achieving and maintaining compliance with Federal frameworks is a complex, resource-intensive process for vendors. It requires continuous vulnerability management, strict adherence to regulatory standards and substantial documentation. Often, this slows down product launches and places a heavy burden on development and security teams. Public Sector customers needed a more proactive, scalable way to reduce risk and accelerate compliance timelines without compromising on security. RapidFort fills this critical gap by delivering a comprehensive, automated solution that addresses these challenges by: Eliminating vulnerabilities before deployment with curated, near-zero CVE container images for Alpine, Debian, Red Hat and Ubuntu—aligned with key frameworks such as FedRAMP and CMMC. Strengthening security posture and operational resilience through runtime protection and intelligent instrumentation, actively reducing software attack surfaces across environments. Accelerating compliance efforts with automated STIG hardening, real-time vulnerability insights and simplified documentation generation, including SBOM and POAM reports. 'Carahsoft and RapidFort are transforming FedRAMP and CMMC compliance—slashing timelines from months to weeks,' said Mehran Farimani, CEO of RapidFort. 'Our near-zero CVE images and software supply chain security platform slash developer workload by 30%, speed up product launches and reduce vulnerabilities by 95%. We're empowering organizations to achieve top-tier security standards with less complexity and more efficiency. Carahsoft's extensive network, contract vehicles and expertise in Public Sector IT procurement make them an ideal partner to accelerate the adoption of RapidFort's holistic security solution, ensuring agencies meet stringent compliance requirements with ease.' RapidFort is already available through Platform One, Tradewind Marketplace, AWS Marketplace, Microsoft Azure Marketplace, Google Cloud Marketplace, providing a reliable and efficient pathway for organizations looking to enter the Federal marketplace and drive growth in the Government sector. For more information about the RapidFort platform, please visit: RapidFort's solutions are available through Carahsoft's SEWP V contracts NNG15SC03B and NNG15SC27B E&I Contract #EI00063~2021MA. For more information, contact the Carahsoft Team at (703) 230-7575 or RapidFort@ or view this complimentary webinar 'Slash Your FedRAMP Certification Time: A Revolutionary Automated Approach.' About RapidFort RapidFort offers a cybersecurity platform that streamlines and secures modern infrastructure. This innovative approach allows organizations to continuously monitor and minimize their software attack surface, ultimately improving their security posture and operational efficiency. RapidFort empowers development and security teams with a free tier and free community images, making it easy to get started with secure software development. Learn more about RapidFort at Contacts Cole Christy LaunchTech Communications (619) 972-9836 cole@ About Carahsoft's Cybersecurity Solutions PortfolioCarahsoft's Cybersecurity solutions portfolio includes leading and emerging technology vendors that enable organizations to defend against cyber threats, manage risk and achieve compliance. Supported by dedicated Cybersecurity product specialists and an extensive ecosystem of resellers, integrators and service providers, we help organizations identify the right technology for unique environments and provide access to technology solutions through our broad portfolio of contract vehicles. The cybersecurity portfolio spans solutions for Supply Chain Risk Management, Cloud Security, Network & Infrastructure, Identity & Access Management, Risk & Compliance and more, ensuring comprehensive protection for organizations' cyber ecosystems. Explore Carahsoft's Cybersecurity Solutions for Government here. About Carahsoft Carahsoft Technology Corp. is The Trusted Government IT Solutions Provider, supporting Public Sector organizations across Federal, State and Local Government agencies and Education and Healthcare markets. As the Master Government Aggregator® for our vendor partners, we deliver solutions for Cybersecurity, MultiCloud, DevSecOps, Artificial Intelligence, Customer Experience and Engagement, Open Source and more. Working with resellers, systems integrators and consultants, our sales and marketing teams provide industry leading IT products, services and training through hundreds of contract vehicles. Visit us at ContactMary Lange(703) 230-7434PR@ in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Associated Press
14-05-2025
- Business
- Associated Press
ColorTokens Slashes Federal Compliance Timelines and Enhances Container Security with RapidFort
SAN FRANCISCO--(BUSINESS WIRE)--May 14, 2025-- RapidFort, the fastest growing cybersecurity company securing the global software supply chain, has partnered with ColorTokens Inc., a pioneer in Zero Trust security and leader in microsegmentation, to strengthen its containerized infrastructure security and optimize its federal compliance efforts. By leveraging RapidFort's platform, ColorTokens notably reduced its attack surface by 77%, minimizing its security risks and improving security operations. 'RapidFort has measurably strengthened the security of both our cloud‑hosted SaaS platform and our on‑premise product,' said Harish Akali, CTO of ColorTokens, 'It's hardened container images, continuous scanning, and clear remediation guidance have cut our vulnerability backlog and supplied the evidence we needed to fast‑track FedRAMP, IRAP, and other certification audits.' Like many organizations who enter the federal marketplace, ColorTokens was challenged by diverse third-party base images and complex DevSecOps workflows. The constant need to maintain stringent federal compliance standards, including FIPS and STIG, required a solution that would reduce vulnerabilities without overburdening engineering resources. RapidFort helped ColorTokens address these challenges by: 'Far too often, organizations must divert critical resources to remediate vulnerabilities and meet compliance requirements, rather than advancing core business priorities,' said Mehran Farimani, CEO of RapidFort. 'By leveraging the RapidFort platform to optimize vulnerability management and minimize their security risks, ColorTokens was able to secure their software faster and with less strain on their teams, reducing the burden of meeting stringent federal compliance requirements.' RapidFort, already available through Platform One, Tradewind Marketplace, AWS Marketplace, Microsoft Azure Marketplace, Google Cloud Marketplace, and Carahsoft, provides a reliable and efficient pathway for organizations looking to enter the federal marketplace and drive growth in the government sector. For more information about the RapidFort platform, please visit: About RapidFort RapidFort offers a cybersecurity platform that streamlines and secures modern infrastructure. Their innovative approach allows organizations to continuously monitor and minimize their software attack surface, ultimately improving their security posture and operational efficiency. RapidFort empowers development and security teams with a free tier and free community images, making it easy to get started with secure software development. Learn more about RapidFort at View source version on CONTACT: Cole Christy LaunchTech Communications 619-972-9836 [email protected] KEYWORD: UNITED STATES NORTH AMERICA CALIFORNIA INDUSTRY KEYWORD: SOFTWARE INTERNET DATA MANAGEMENT TECHNOLOGY LOGISTICS/SUPPLY CHAIN MANAGEMENT TRANSPORT OTHER TECHNOLOGY SECURITY SOURCE: RapidFort Copyright Business Wire 2025. PUB: 05/14/2025 09:30 AM/DISC: 05/14/2025 09:31 AM
Business Wire
14-05-2025
- Business
- Business Wire
ColorTokens Slashes Federal Compliance Timelines and Enhances Container Security with RapidFort
SAN FRANCISCO--(BUSINESS WIRE)-- RapidFort, the fastest growing cybersecurity company securing the global software supply chain, has partnered with ColorTokens Inc., a pioneer in Zero Trust security and leader in microsegmentation, to strengthen its containerized infrastructure security and optimize its federal compliance efforts. By leveraging RapidFort's platform, ColorTokens notably reduced its attack surface by 77%, minimizing its security risks and improving security operations. 'RapidFort has measurably strengthened the security of both our cloud‑hosted SaaS platform and our on‑premise product,' said Harish Akali, CTO of ColorTokens, 'It's hardened container images, continuous scanning, and clear remediation guidance have cut our vulnerability backlog and supplied the evidence we needed to fast‑track FedRAMP, IRAP, and other certification audits.' Like many organizations who enter the federal marketplace, ColorTokens was challenged by diverse third-party base images and complex DevSecOps workflows. The constant need to maintain stringent federal compliance standards, including FIPS and STIG, required a solution that would reduce vulnerabilities without overburdening engineering resources. RapidFort helped ColorTokens address these challenges by: Deploying FIPS and STIG aligned pre-hardened, near-zero CVE images for Ubuntu, Redis, Golang, and Reducing vulnerabilities through intelligent runtime profiling and automated removal of unused software components, dramatically reducing exposure and cutting down on manual patching efforts. Embedding RapidFort's runtime-aware scanner into CI/CD pipelines, providing continuous visibility, real-time vulnerability insights, and proactive control. Accelerating compliance readiness by three months using built-in benchmarking and STIGing tools, simplifying the path to federal certifications like FedRAMP. 'Far too often, organizations must divert critical resources to remediate vulnerabilities and meet compliance requirements, rather than advancing core business priorities,' said Mehran Farimani, CEO of RapidFort. 'By leveraging the RapidFort platform to optimize vulnerability management and minimize their security risks, ColorTokens was able to secure their software faster and with less strain on their teams, reducing the burden of meeting stringent federal compliance requirements.' RapidFort, already available through Platform One, Tradewind Marketplace, AWS Marketplace, Microsoft Azure Marketplace, Google Cloud Marketplace, and Carahsoft, provides a reliable and efficient pathway for organizations looking to enter the federal marketplace and drive growth in the government sector. For more information about the RapidFort platform, please visit: About RapidFort RapidFort offers a cybersecurity platform that streamlines and secures modern infrastructure. Their innovative approach allows organizations to continuously monitor and minimize their software attack surface, ultimately improving their security posture and operational efficiency. RapidFort empowers development and security teams with a free tier and free community images, making it easy to get started with secure software development. Learn more about RapidFort at
Yahoo
14-05-2025
- Business
- Yahoo
ColorTokens Slashes Federal Compliance Timelines and Enhances Container Security with RapidFort
Partnership significantly improved company's operational efficiency by eliminating critical software vulnerabilities and fast-tracking certification audits by three months SAN FRANCISCO, May 14, 2025--(BUSINESS WIRE)--RapidFort, the fastest growing cybersecurity company securing the global software supply chain, has partnered with ColorTokens Inc., a pioneer in Zero Trust security and leader in microsegmentation, to strengthen its containerized infrastructure security and optimize its federal compliance efforts. By leveraging RapidFort's platform, ColorTokens notably reduced its attack surface by 77%, minimizing its security risks and improving security operations. "RapidFort has measurably strengthened the security of both our cloud‑hosted SaaS platform and our on‑premise product," said Harish Akali, CTO of ColorTokens, "It's hardened container images, continuous scanning, and clear remediation guidance have cut our vulnerability backlog and supplied the evidence we needed to fast‑track FedRAMP, IRAP, and other certification audits." Like many organizations who enter the federal marketplace, ColorTokens was challenged by diverse third-party base images and complex DevSecOps workflows. The constant need to maintain stringent federal compliance standards, including FIPS and STIG, required a solution that would reduce vulnerabilities without overburdening engineering resources. RapidFort helped ColorTokens address these challenges by: Deploying FIPS and STIG aligned pre-hardened, near-zero CVE images for Ubuntu, Redis, Golang, and Reducing vulnerabilities through intelligent runtime profiling and automated removal of unused software components, dramatically reducing exposure and cutting down on manual patching efforts. Embedding RapidFort's runtime-aware scanner into CI/CD pipelines, providing continuous visibility, real-time vulnerability insights, and proactive control. Accelerating compliance readiness by three months using built-in benchmarking and STIGing tools, simplifying the path to federal certifications like FedRAMP. "Far too often, organizations must divert critical resources to remediate vulnerabilities and meet compliance requirements, rather than advancing core business priorities," said Mehran Farimani, CEO of RapidFort. "By leveraging the RapidFort platform to optimize vulnerability management and minimize their security risks, ColorTokens was able to secure their software faster and with less strain on their teams, reducing the burden of meeting stringent federal compliance requirements." RapidFort, already available through Platform One, Tradewind Marketplace, AWS Marketplace, Microsoft Azure Marketplace, Google Cloud Marketplace, and Carahsoft, provides a reliable and efficient pathway for organizations looking to enter the federal marketplace and drive growth in the government sector. For more information about the RapidFort platform, please visit: About RapidFort RapidFort offers a cybersecurity platform that streamlines and secures modern infrastructure. Their innovative approach allows organizations to continuously monitor and minimize their software attack surface, ultimately improving their security posture and operational efficiency. RapidFort empowers development and security teams with a free tier and free community images, making it easy to get started with secure software development. Learn more about RapidFort at View source version on Contacts Cole ChristyLaunchTech Communications619-972-9836cole@ Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
