RPD · CIK 0001560327
What Rapid7, Inc. told the SEC could break it.
2 self-disclosed vulnerabilities, pulled from its own filings — each in the company’s words, with the source. This is the risk register almost nobody reads.
A limited set so far — we surface every cited disclosure we’ve extracted for RPD. More may follow as additional filings are processed.
In its own words
What could break it.
Other disclosures
- 73% of revenue through channel partnersmedium
Rapid7 derived approximately 73% of revenue through channel partners in 2025 (up from 68% in 2024 and 62% in 2023, and expected to increase), concentrating go-to-market reliance on non-exclusive resellers that may also work with competitors.
“For the years ended December 31, 2025, 2024 and 2023, we derived approximately 73%, 68% and 62%, respectively, of our revenue from sales of products and service offerings through channel partners, and the percentage of revenue derived from channel partners may increase in future periods.”
SEC filing →As of 2026
Regulatory & policy
- Export controls and sanctions on security-software salesmedium
U.S. import/export control laws, economic sanctions, tariffs and trade barriers limit Rapid7's ability to sell or provide its security solutions in certain foreign markets, with material compliance costs and non-compliance risk for export-controlled cyber products.
“costs of compliance with U.S. laws and regulations for foreign operations, including the U.S. Foreign Corrupt Practices Act, import and export control laws, tariffs, trade barriers, economic sanctions and other regulatory or contractual limitations on our ability to sell or provide our solutions in certain foreign markets, and the risks and costs of non-compliance”
In the MyPRIA app, this is checked against the companies you actually own.
← World Watch