News & Events

2006 Press Releases

PDF Version

Hannaford Supermarkets installs Rapid7's NeXpose for Achieving Compliance with the Payment Card Industry (PCI) Data Security Standard

March 18th, 2008 - While Hannaford Brothers have confirmed that a recent breach resulted in the theft of sensitive data, Hannaford has also confirmed that NeXpose continues to provide exceptional vulnerability management and outstanding remediation reporting for Hannaford's IT assets. Hannaford also confirmed that the systems involved in this breach were outside of the systems that are scanned by NeXpose.

Boston, MA - August 15, 2006 - Rapid7 today announced that the Hannaford Bros. Co. has purchased NeXpose, its award-winning enterprise vulnerability management solution, to perform network security scanning in compliance with the Payment Card Industry (PCI) Data Security Standard.

NeXpose will be used to scan devices in Hannaford's networks and at point-of-sale in its 158 retail supermarkets and food and drug stores, ensuring the protection of customers' credit card data and other information. Rapid7 is a MasterCard-approved security scanning vendor as part of the MasterCard Site Data Protection (SDP) Program.

During a review of several vulnerability management solutions for performing its PCI compliance scanning, Hannaford found that NeXpose stood out for several reasons.

"NeXpose is extremely thorough in its compliance checking against devices," stated David Fournier, senior information security analyst, Hannaford Bros. Co. "NeXpose also demonstrated it enables integration with other technologies. We can easily integrate it with the Peregrine Service Center, the software we use for call-ticketing and incident-handling."

Fournier further reported, "The product is easy to use; the interface makes it simple to set up and perform the scanning. We were also pleased to learn that it is an affordable solution and fit within our budget."

"By deploying NeXpose vulnerability management to secure its networks, Hannaford is proactively protecting its business and the customer data in its payment systems against the threat of compromises," stated Alan Matthews, president of Rapid7 LLC. "Vulnerabilities left undetected can potentially lead to unauthorized access, but by finding and fixing any exposures, NeXpose reduces the risk of intrusion."

NeXpose PCI Compliance provides scan templates and reporting capabilities that meet or exceed the MasterCard SDP specifications for system security scanning. The PCI Standard compliance report presents pass/fail information at both executive and administrator detail levels. A complete remediation plan is generated that enables security analysts to bring their system devices into full compliance with the PCI Standard.

About Hannaford Bros. Co.

Hannaford Bros. Co., based in Scarborough, Maine, operates 158 supermarkets and food and drug combination stores in Maine, New Hampshire, Vermont, New York and Massachusetts. These stores operate under the Hannaford Supermarket and Hannaford Supermarket and Pharmacy names. Hannaford employs more than 26,000 associates. The company is owned by Delhaize Group of Brussels, Belgium. Additional information can be found at www.hannaford.com.

About Rapid7 NeXpose

The award-winning Rapid7 NeXpose Unified Vulnerability Management (UVM) is an all-in-one security solution that scans networks, Web applications, databases, to locate threats, assess their risk to the environment, devise a remediation plan and implement the ticketing process. NeXpose incorporates an expert system to build a knowledge base of facts on the environment it explores and model potential targeted attacks to expose all existing threats. NeXpose provides robust reporting capabilities that ensure compliance with governmental regulations, corporate security configuration policies, and the PCI Data Security Standard. NeXpose is available as a "plug and play" appliance, downloadable software, or an On-Demand hosted solution.

About Rapid7

Rapid7 is the leading provider of unified vulnerability management, compliance, and penetration testing solutions, delivering actionable intelligence about an organization’s entire IT environment.  Rapid7 offers the only integrated threat management solution that enables organizations to implement and maintain best practices and optimize their network security, Web application security and database security strategies.

Recognized as the fastest growing vulnerability management company in the U.S. by Inc. Magazine, Rapid7 helps leading organizations such as Liz Claiborne, Southern Company, the United States Postal Service, the New York Times, Carnegie Mellon University and the National Nuclear Security Administration (NNSA) to mitigate risk and maintain compliance for regulations such as PCI, HIPAA, FISMA, SOX and NERC . Rapid7 also manages the Metasploit Project, the leading open-source penetration testing platform with the world’s largest database of public, tested exploits.  For more information, visit www.rapid7.com.

Awards
inc500 Award Logo inc500 Award Logo 2009 Redherring Winner Logo 2009 Best Prodcuts Logo 2009 Tomorrow Tech Logo 2009 GPE Awrads Logo Finalist Hot Companies 2009 Logo Rapid7 Star100 Revised Graphic Gartner POS Rating Graphic SC Award Nominee 2008 Nominee 2008 Global Exeellence SC Awards 2007 Finalist Hot Companies of 2007 Customer Trust Logo Hot Company 2006 Logo SC 2006 Awards Winner
Most Read
Most Downloaded
Press Releases