• Home
  • Newsroom
  • Mend.io Acquires Atom Security for Container-Level Reachability

Mend.io Acquires Atom Security for Container-Level Reachability

Mend.io becomes the only vendor to provide a holistic reachability approach from code to cloud

TEL AVIV, Israel and BOSTON, December 19, 2023 – Mend.io, a leader in application security, today announced its acquisition of Atom Security, a stealth mode startup offering an innovative, risk-based approach to container image vulnerability prioritization. By combining Atom’s container-level reachability with Mend.io’s application-level reachability analysis, Mend.io is the only vendor to let security and development teams prioritize detected vulnerabilities based on reachability at both the application and container level. 

Seamlessly integrating Atom’s capabilities into Mend.io’s cloud-native container security offering allows for a shift-left approach to image scanning. The acquisition will enable low-effort, lightning-fast, scalable, and early detection of reachable vulnerabilities in container images. 

A pure “left side” capability, Atom’s technology allows users to predict, in the pre-deployment phase, reachable open source vulnerabilities in applications and in their hosting environment. Atom extends the traditional coverage of reachability beyond the application and lowers the number of vulnerability findings by 60 to 70 percent. 

“Atom Security’s reachability technology addresses a critical application security challenge: effectively handling the overwhelming number of security vulnerabilities often detected in containers,” said Ariel Shuper, co-founder and CEO of Atom Security. “We are thrilled to join Mend.io to meet developers’ and application security teams’ need for tools that reduce vulnerability handling efforts and enable better prioritization and remediation.” 

Shuper, as well as Atom co-founders Amit Chita and Bar-El Tayouri will join the Cloud Native division of Mend.io’s product and engineering teams. They bring decades of experience in product management and research and development (R&D) for cloud-native, serverless, and application security vendors as well as Israel Defense Forces (IDF) units 81 and 8200.   

“Mend.io pioneered the application security reachability concept with Effective Usage Analysis in 2019, and the Atom acquisition once again expands this value proposition into our cloud-native container security offering,” said Rami Sass, co-founder and CEO, Mend.io. “The Atom team is a highly valuable addition to our product and engineering teams, bringing specialized know-how in security research, cloud-native technologies, and go-to-market practices.”

About Mend.io

Mend.io, formerly known as WhiteSource, has over a decade of experience helping global organizations build world-class AppSec programs that reduce risk and accelerate development – using tools built into the technologies that software and security teams already love. Our automated technology protects organizations from supply chain and malicious package attacks, vulnerabilities in open source and custom code, and open-source license risks. With a proven track record of successfully meeting complex and large-scale application security needs, Mend.io is the go-to technology for the world’s most demanding development and security teams. The company has more than 1,000 customers, including 25 percent of the Fortune 100, and manages Renovate, the open source automated dependency update project. For more information, visit www.mend.io, the Mend.io blog, and Mend.io on LinkedIn and Twitter.

Meet The Author

Mend.io Communications

Mend.io offers an enterprise suite of application security tools designed to help leading organizations build and manage mature AppSec programs, enabling them to stop chasing vulnerabilities and start proactively managing application risk.

Subscribe to Our Blog