Breach Security 2008 Revenue Increases 157 Percent Year-Over-Year

PRESS RELEASE

CARLSBAD, Calif., February 10, 2009 — Breach Security, Inc., the leader in web application integrity, security and PCI compliance, today announced continued momentum and growth in 2008, achieving a 157 percent increase in sales year-over-year. To meet global demand for its award-winning web application security appliances, Breach Security also expanded its worldwide channel program by signing key new partners which led to a 500 percent increase in channel sales in 2008. In addition, the company delivered the industry's first MSSP partnerships to offer web application security as a managed service using Breach Security's WebDefend as its platform.

Key new additions to the management team in 2008 include Darryl Gordon, vice president of marketing (formerly with Websense, Memec and Kintera) and Dan Nadir, vice president of product management (formerly with ScanSafe, ISS, FrontBridge and Tivoli). Gordon and Nadir have proven track records working for fast-growth companies in maturing markets, and are well positioned to help Breach Security continue to meet strategic business goals as the web security market continues to evolve.

"The time to get serious about corporate web applications has never been more certain as companies face far more sophisticated attacks, well enforced industry regulations, and a growing reliance on the web for business critical applications," said Sanjay Mehta, Breach Security SVP. "By providing solutions that balance security goals with business realities, Breach WebDefend has become the standard in the web application architecture for leading corporations from SME to global enterprise. Our focus on delivering a business focused security solution propelled tremendous growth in 2008 and provides a strong foundation for the year ahead."

Technology Innovation In 2008, Breach Security extended its leadership position across its key focus areas with the following technical advancements:

Application Security—Delivered the next generation of its patent-pending application profiling technology that provides the fastest and most accurate protection from zero day attacks;

Application Integrity—Pioneered advancements in the detection and prevention of malicious website scraping to stop the exploitation of business logic that plagues companies in nearly every industry vertical;

PCI Compliance—Integrated security protection of magnetic stripe data, cardholder verification numbers and personal identification numbers (PINs). Also launched three PCI QuickStart packages tailored for customers of all sizes.

Industry Validation Breach Security received further industry validation and accolades in 2008, demonstrating the value of the company's real-time, continuous web application integrity and security products within the global marketplace. The company was awarded the 2008 American Electronics Association (AeA) High Tech Award in the Internet/Web Commerce category for protecting web applications from hacking attacks and data leakage. In addition, Breach's flagship web application security appliance, WebDefend, received a five-star review in SC Magazine's 2008 Firewalls Group Test. SC Magazine recognized WebDefend for many different levels of protection, including dynamic profiling, exit control and application defect detection features, as well as its performance, ease of use and support packages.

About Breach Security Breach Security, Inc. is the leading provider of real-time, continuous web application integrity, security and compliance that protects sensitive web-based information. Breach Security's products protect web applications from hacking attacks and data leakage, and ensure applications operate as intended. The company's products are trusted by thousands of organizations around the world, including leaders in finance, healthcare, ecommerce, travel and government. For more information, please visit www.breach.com.