Minimus Unveils a Groundbreaking Security Platform at RSAC 2025
In a significant advancement for application security, Minimus launched its innovative platform at the RSAC 2025 Conference, showcasing its ability to eradicate over 95% of Common Vulnerabilities and Exposures (CVEs) within software supply chains. Backed by a substantial seed funding round of $51 million from YL Ventures and Mayfield, the startup is set to revolutionize how organizations manage software vulnerabilities.
Ben Bernstein, the CEO and Co-Founder of Minimus, emphasized the need for a proactive approach to application security, stating, "Organizations need to quickly deliver new features while also maintaining robust security practices. In this environment, vulnerability remediation and developer education are not enough."
This belief underpins the vision of Minimus, which allows developers to innovate freely without getting bogged down by the time-consuming processes traditionally associated with vulnerability detection and remediation.
A Transformative Solution for Developers and CISOs
One of the standout features of Minimus's offering is its secure, minimal container images and virtual machines, which replace existing software artifacts in the development workflow. This replacement requires just a single adjustment to deployment configurations, leading to an immediate reduction in vulnerability exposure. This efficacy significantly accelerates the remaining remediation processes, empowering both developers and Chief Information Security Officers (CISOs) alike.
Yoav Leitersdorf, Managing Partner at YL Ventures, expressed confidence in Minimus's potential to redefine the application security landscape. He stated, "With Minimus, they will undoubtedly redefine and lead the application security space by fundamentally changing how vulnerabilities are managed." This new approach alleviates the burden on security teams, directly addressing the core challenge of mitigating security risks without overwhelming their resources.
Real-Time Insights and Threat Intelligence Integration
Moreover, Minimus strengthens its platform with integrated threat intelligence, ensuring that developers and security teams remain informed about active exploits and metrics like EPSS and CISA-KEV that affect their supply chains. This real-time insight simplifies the prioritization of the remaining 5% of CVEs, thus facilitating faster and more effective security strategies.
Navin Chaddha, Managing Partner at Mayfield, echoed this sentiment, noting the significance of Minimus's contributions to application security, especially in today's AI-accelerated development environments. He stated, "This advancement in application security enables organizations to innovate faster while drastically reducing risk—making it an essential solution for enterprise CISOs."
Commitment to AI-Driven Solutions
With an AI-first approach, Minimus positions itself as a leader in employing intelligent agents for secure image generation. This innovative strategy showcases the startup's commitment to staying at the forefront of technology trends within the cybersecurity domain.
Now available for widespread implementation, Minimus offers a groundbreaking pathway for organizations to improve their cybersecurity posture. For those interested in learning more, detailed information can be found on the
Minimus website.
About Minimus
Founded in October 2022 by cybersecurity visionaries Ben Bernstein, Dima Stopel, and John Morello, Minimus seeks to significantly lower the instability associated with cloud software vulnerabilities. Drawing on their expertise from prior ventures, including Twistlock and the development of NIST SP 800-190, Minimus is committed to preventing vulnerabilities proactively rather than merely reacting to them. By building software images from scratch using only necessary components, Minimus minimizes potential attack vectors, allowing for seamless integration into existing systems with minimal configuration changes.
By embracing this revolutionary approach, Minimus is set to deliver immediate value to organizations while streamlining their security processes, thereby setting a new standard in application security.