Prime cybersecurity M&A offers for 2021

CSO  >  secure mergers + acquisitions / floating puzzles pieces / abstract security mechanisms

2021 is shaping as much as be an lively yr for mergers and acquisitions within the cybersecurity business. March alone noticed greater than 40 corporations being acquired. The extent of exercise is pushed by development in sectors corresponding to id administration, zero belief, managed safety companies, DevSecOps and cloud safety.

In lots of circumstances, the buying firm sought to strengthen its place in its market—Okta’s buy of Auth0, for instance. In others, the acquisition was an entry into a brand new market; Lookout is now a participant within the safe entry service edge (SASE) market with the acquisition of CipherCloud. Some used the newly acquired firm to broaden product capabilities, like Palo Alto Networks boosting its Prisma Cloud platform with cloud safety know-how from Bridgecrew.

Beneath are the offers that CSO has chosen as probably the most important of the yr. (This listing is up to date periodically as new offers are introduced.)

One Identification acquires OneLogin to additional consolidate IAM market

October 4: Identification safety supplier One Identification has acquired id entry administration (IAM) vendor OneLogin for an undisclosed sum. The corporate plans to mix OneLogin’s know-how with its Unified Identification Safety Platform to supply enhanced IAM, privileged entry administration (PAM), id governance and administration, and Lively Listing administration and safety. “With the proliferation of human and machine identities, the race to the cloud and the rise of distant working, id is shortly turning into the brand new edge – and defending id in an end-to-end method has by no means been extra necessary,” mentioned Bhagwat Swaroop, president and common supervisor of One Identification, in a press launch.

Akamai publicizes plans to amass Guardicore

September 29: Akamai has signed an settlement to amass micro-segmentation answer supplier Guardicore for roughly $600 million. The corporate plans to combine Guardicore’s know-how into its zero belief safety portfolio. “Given the latest surge in ransomware assaults and more and more stringent compliance rules, investing in applied sciences to cut back the unfold of malware has turn out to be mission important,” mentioned Tom Leighton, CEO and co-founder, Akamai Applied sciences, in a press launch. “By including Guardicore’s main micro-segmentation merchandise to Akamai’s complete portfolio of Zero Belief options, we consider Akamai will be capable of present the best strategy to fight ransomware in the marketplace at present.”

TransUnion indicators settlement to Purchase Neustar

September 13: TransUnion has introduced its intent to amass id decision firm Neustar for $3.1 billion. The corporate expects the deal to broaden its digital id capabilities in digital advertising and marketing and id fraud areas. “As digital commerce continues to develop globally, TransUnion’s highly effective digital id property, enhanced by Neustar’s distinctive information and digital decision capabilities, will allow safer and extra personalised on-line experiences for customers and companies,” mentioned Chris Cartwright, president and CEO of TransUnion, in a press launch.

FireMon acquires cloud safety agency DisruptOps

September 8: Community safety coverage administration vendor FireMon’s acquisition of DisruptOps provides cloud safety operations capabilities to its options. FireMon expects to convey to its prospects the flexibility to watch and reply to safety dangers throughout the general public cloud infrastructure. “Bringing DisruptOps and FireMon collectively provides transformational cloud safety automation capabilities to FireMon’s main safety administration platform – collectively we’ll ship the safety operations platform of the long run,” mentioned FireMon CEO Jody Brazil in a press launch. Phrases of the deal weren’t disclosed.

LogPoint publicizes intent to amass SecBI for its SOAR and XDR capabilities

September 1: LogPoint has entered into an settlement to amass SecBI, recognized for its automated risk detection and response capabilities. The corporate plans to combine SecBI’s SOAR and EDR platform into its personal options. “This integration will enable prospects to shortly launch automated notifications and safety remediations utilizing our full-native SOAR capabilities,” mentioned LogPoint CE Jesper Zerlang in a press launch. The acquisition is predicted to be full in Q3 2021; phrases weren’t disclosed.

OwnBackup provides Salesforce safety and governance with RevCult acquisition

August 31: Cloud information safety agency OwnBackup has acquired RevCult, a supplier of SaaS safety posture administration (SSPM) options for Salesforce. “Though we’ve geared up prospects to be extra resilient with proactive information backup, monitoring, examine and restore capabilities, most of the issues we assist them get better from are preventable by way of the addition of proactive SSPM,” mentioned Sam Gutmann, CEO of OwnBackup, in a press launch. Phrases of the deal weren’t disclosed.

XYPRO Know-how acquires Workload Conscious Safety for SAP HANA from HPE

August 31: XYPRO Know-how has added the Workload Conscious Safety (WASL) product from Hewlett-Packard Enterprise, bringing safety and compliance monitoring capabilities for Linux and SAP HANA environments into its safety portfolio. HPE will proceed to promote and distribute WASL. XYPRO will assist present WASL deployments and renewals, and proceed to develop the platform. Phrases of the sale weren’t disclosed.

Verify Level Software program provides cloud e-mail safety with Avanan acquisition

August 30: Enterprise safety supplier Verify Level Software program Applied sciences has acquired cloud e-mail safety firm Avanan. Along with Avanan’s cloud e-mail safety know-how, the deal is predicted to increase Verify Level’s safety capabilities to collaboration suites corresponding to Groups and Slack. “Increasingly more companies are transferring to cloud e-mail platforms, and with e-mail turning into a serious channel to launch devastating cyberattacks, this acquisition represents an enormous potential as organizations are in search of a brand new strategy to e-mail and collaboration suite safety,” mentioned Dr. Dorit Dor, Verify Level’s chief product officer, in a press launch. Phrases of the acquisition weren’t disclosed.

HackerU boosts SaaS cybersecurity training choices with Cybint acquisition

August 4: Instructional cybersecurity agency HackerU has purchased Cybint for its SaaS-based training platform. The acquisition will increase HackerU’s geographic attain and broadens its choices throughout all safety profession factors. The corporate may also rebrand as ThriveDX. “We’re proud to welcome the wonderful Cybint staff and their unimaginable portfolio of expertise to the HackerU, now ThriveDX, household,” mentioned Dan Vigdor, co-founder and government chairman of HackerU, in a press launch. “The mixture of our two corporations’ positions the brand new ThriveDX group because the class chief worldwide and solidifies our capacity to reskill and upskill people at any stage of their skilled life.” Phrases of the sale weren’t disclosed.

Feedzai buys biometric platform Revelock for safe cashless commerce

August 4: Cloud danger administration platform supplier Feedzai has acquired the Revelock biometric platform. The mixed merchandise will create what Feedzai claims is the world’s largest AI-based monetary danger administration platform. Our objective has at all times been to make digital commerce secure for everybody. Including Revelock to our purchasers’ arsenal modifications the paradigm from securing transactions in real-time – one thing we had been already doing – to successfully stopping crime earlier than it occurs,” mentioned Nuno Sebastiao, CEO of Feedzai, in a press launch. Phrases of the sale weren’t launched.

Ivanti to amass IIoT platform from WIIO Group

August 4: Ivanti has signed a letter of intent to amass WIIO Group’s IIoT platform to combine with its Wavelink provide chain software program. The IIoT platform is predicted to provide Wavelink prospects a full view of their IIoT gadgets and the flexibility to higher establish and remediate safety points. “There may be rising demand by enterprises throughout all verticals to make sure that their provide chain operations are at peak effectivity,” mentioned Brandon Black, vp and common supervisor of Ivanti Wavelink, in a press launch. “We stay up for integrating our applied sciences and serving to our prospects additional automate and safe their provide chain operations, whereas bettering finish person experiences and enhancing productiveness.” Phrases of the acquisition weren’t launched.

Ivanti acquires vulnerability administration agency RiskSense

August 2: Ivanti’s acquisition of RiskSense permits the corporate to merge its personal automated IT asset administration and safety platform with RiskSense’s vulnerability administration and prioritization know-how. The mixture, Ivanti claims, will “drive the subsequent evolution of patch administration. “I’m dedicated to the worldwide combat in opposition to ransomware. And I really consider that the mix of risk-based vulnerability prioritization and automatic patch intelligence will help organizations scale back their publicity and make a serious influence in world our on-line world,” mentioned Srinivas Mukkamala in a press launch. Phrases of the sale weren’t launched.

Deloitte buys aeCyberSolutions to spice up ICS choices

August 3: Deloitte Danger & Monetary Advisory has acquired industrial cybersecurity agency aeCyberSolutions from aeSolutions for an undisclosed price. With the acquisition, Deloitte positive aspects frameworks, methodologies, and instruments geared toward safety industrial management techniques and operational know-how. “Cyberattacks on industrial controls techniques for important infrastructure are more and more subtle and far-reaching, making cyber resilience and regulatory compliance extra necessary than ever,” mentioned Wendy Frank, Deloitte Danger & Monetary Advisory Cyber 5G and IoT chief and principal, Deloitte & Touche LLP, in a press launch. “As industrial organizations digitally rework to undertake extra rising applied sciences like 5G, the Web of Issues, machine studying and synthetic intelligence, our acquisition of the aeCyberSolutions enterprise helps us to supply modern ICS/OT applied sciences and associated advisory companies.”

Microsoft acquires CIEM supplier CloudKnox Safety

July 21: Microsoft has enhanced its cloud safety choices with the acquisition of CloudKnox Safety, a cloud infrastructure entitlement administration (CIEM) supplier. That is Microsoft’s second safety acquisition this month (see under). With CloudKnox’s know-how, Microsoft will be capable of supply extra visibility into privileged entry, permitting for higher enforcement of least-privilege rules. “The acquisition of CloudKnox additional permits Microsoft Azure Lively Listing prospects with granular visibility, steady monitoring and automatic remediation for hybrid and multi-cloud permissions. We’re dedicated to offering our prospects with unified privileged entry administration, id governance and entitlement administration,” mentioned Pleasure Chik, company vp Microsoft Identification, in a weblog put up. Transaction phrases weren’t launched.

Rapid7 buys risk intelligence and remediation agency IntSights Cyber Intelligence

July 19: Rapid7’s has acquired IntSights Cyber Intelligence with the intent of mixing IntSights’ exterior risk intelligence capabilities with its personal risk intelligence know-how for buyer environments. “Each IntSights and Rapid7 have a shared perception that organizations will succeed solely once they have a unified view of inner and exterior threats, full with contextualized intelligence and automatic risk mitigation which is able to enable safety groups to concentrate on probably the most important threats,” mentioned Corey Thomas, Rapid7 chairman and CEO, in a press launch. “We stay up for working with IntSights to make this imaginative and prescient a actuality for our prospects.” Rapid7 can pay about $335 million for IntSights.

OPSWAT acquires property of OT, ICS safety agency Bayshore Networks

July 19: Essential infrastructure safety firm OPSWAT has accomplished an asset buy of Bayshore Networks, recognized for its lively industrial cybersecurity options. OPSWAT will combine Bayshore’s merchandise and personnel into its personal platform and groups. “This acquisition furthers our dedication to supply organizations worldwide with probably the most complete important infrastructure safety options out there at present,” mentioned Benny Czarny, OPSWAT founder and CEO, in a press launch. Phrases of the acquisition weren’t launched.

Microsoft in settlement to amass RiskIQ

July 12: Microsoft introduced its intent to amass world risk intelligence and assault service administration agency RiskIQ. The corporate expects RiskIQ to reinforce its safety capabilities for digital transformation and hybrid work. “The mixture of RiskIQ’s assault floor administration and risk intelligence empowers safety groups to assemble, graph, and establish connections between their digital assault floor and attacker infrastructure and actions to assist present elevated safety and sooner response,” mentioned Eric Doerr, Microsoft vp of cloud safety, in a weblog put up. Phrases of the deal weren’t disclosed.

Sophos provides Linux server and cloud container safety with Capsule8 purchase

July 7: Sophos has expanded its detection and response options with the acquisition of Capsule 8, which is understood for its runtime visibility, detection and response for Linux manufacturing servers and containers. “Complete server safety is an important part of any efficient cybersecurity technique that organizations of all sizes are more and more targeted on, particularly as extra workloads transfer to the cloud,” mentioned Dan Schiappa, chief product officer at Sophos, in a press launch. “With Capsule8, Sophos is delivering superior, differentiated options to guard server environments, and increasing its place as a number one world cybersecurity supplier.” Phrases of the sale weren’t launched.

Ping Identification buys SecuredTouch for its id fraud capabilities

June 21: Ping Identification has acquired SecuredTouch, recognized for its fraud and bot detection and mitigation options. Ping will combine SecuredTouch into its PingOne Cloud Platform. “Identification isn’t nearly figuring out who prospects are, it’s about figuring out when somebody is pretending to be a buyer. As corporations bear huge digital transformation initiatives, the necessity for seamless, frictionless, and safe id options to confidently perceive each these conditions is crucial,” mentioned Andre Durand, founder and CEO of Ping Identification, in a press launch. “The acquisition of SecuredTouch accelerates our imaginative and prescient for cloud delivered clever id options that fight malicious habits corresponding to bots, emulators, and account takeover.”

Deloitte expands risk intelligence choices with Terbium Labs acquisition

June 15: Deloitte has bought the property of digital danger safety answer supplier Terbium Labs. The corporate helps organizations detect and remediate information publicity, theft and misuse. All Terbium options and companies can be rolled into Deloitte’s Detect & Response suite. “Including Terbium Labs’ enterprise to our portfolio will supply our purchasers yet one more strategy to repeatedly monitor for — and, when applicable, decrease the influence of — information uncovered on the open, deep, or darkish internet,” mentioned Kieran Norton, Deloitte Danger & Monetary Advisory’s infrastructure answer chief and principal, Deloitte & Touche LLP, in a press launch.

Forcepoint to amass UK-based Deep Safe

June 15: Forcepoint has entered into an settlement to purchase Deep Safe. As soon as the deal finalizes in August, the corporate plans to combine Deep Safe’s Risk Removing Platform into its Cross Area Options portfolio, and its content material, disarm and reconstruction (CDR) capabilities into Forcepoint’s SASE structure. “The addition of Deep Safe’s modern Risk Removing Platform and {hardware} safety to our Forcepoint Cross Area Options portfolio additional extends the depth of our defense-grade capabilities to governments and significant infrastructure organizations all over the world, who proceed to be underneath siege from nation-state and different attackers in search of monetary acquire or to finally disrupt societies and economies at scale,” mentioned Forcepoint President of World Governments and Essential Infrastructure Sean Berg in a press launch.

Non-public fairness corporations to purchase cloud safety vendor ExtraHop

June 8: Bain Capital Non-public Fairness and Crosspoint Capital Companions have entered into an settlement to amass Extrahop, a cloud-native community detection and response answer supplier. The deal is valued at $900 million. “By combining our distinctive staff, market want, and know-how with the deep area experience and assets of Bain Capital and Crosspoint Capital, ExtraHop has the chance to develop sooner and speed up our innovation to assist our prospects defend their operations from even probably the most superior threats,” mentioned ExtraHop CEO Arif Kareem in a press launch.

Sumo Logic finalizes acquisition of SOAR supplier DFLabs

Might 25: SIEM and cloud monitoring vendor Sumo Logic provides safety orchestration, automation and response (SOAR) capabilities with its buy of DFLabs. Sumo Logic will lengthen its cloud-native SIEM answer with DFLabs know-how. “Prospects are in search of a brand new strategy to assist them overcome the ache and complexity round an more and more perimeter-less world,” mentioned Greg Martin, vp and common supervisor of Sumo Logic Safety Enterprise Unit, in a press launch. “The DFLabs staff are consultants in serving to prospects navigate this new world. By aligning our cybersecurity experience, buyer validated and main safety portfolios, we consider we can tackle the important challenges our prospects face as they navigate this altering risk panorama.” Phrases of the deal weren’t introduced.

Splunk to amass TruSTAR to spice up safety analytics

Might 18: Splunk has entered into an settlement to purchase cloud-native safety firm TruSTAR. The corporate plans to combine capabilities of TruSTAR’s Intelligence Platform into its Information-to-Every thing platform. “In at present’s information age, built-in and automatic intelligence is important to speed up detection, streamline response and enhance cyber resilience. TruSTAR’s cloud-native answer centralizes risk information from a wide selection of sources so it may be seamlessly built-in into safety analytics and SOAR workflows to supply extra autonomous, greater efficacy safety operations,” mentioned Sendur Sellakumar, senior vp, cloud and chief product officer, Splunk, in a press launch. Phrases of the acquisition weren’t introduced.

Cisco publicizes intent to purchase Kenna Safety

Might 14: Cisco has publicizes plans to amass risk-based vulnerabitility managemement agency Kenna Safety. Kenna’s machine learning-based know-how can be included into Cisco’s SecureX platform. “Hybrid work is right here to remain, and the growing complexity of cybersecurity is our prospects’ greatest problem. We should radically simplify safety to remain forward of the evolving risk panorama,” mentioned Jeetu Patel, senior vp and common supervisor, Cisco Safety and Collaboration, in a press launch. “Our objective is to unify all important management factors right into a single platform. With the addition of Kenna Safety, we’ll essentially strengthen our platform expertise by giving prospects the flexibility to prioritize vulnerabilities based mostly on a strong danger methodology that’s tuned to their distinctive wants.” Phrases of the acquisition weren’t disclosed.

NCC Group to amass Iron Mountain’s mental property administration enterprise

Might 13: Cybersecurity and resilience advisory agency NCC Group has entered into an settlement to amass Iron Mountain’s mental property administration (IPM) enterprise for $220 million. NCC will function the IPM unit into its Software program Resilience group to create an escrow enterprise. “The IPM enterprise shares many similarities with our personal Software program Resilience enterprise, together with a dedication to offering exemplary service for purchasers. There are large alternatives to develop the mixed enterprise by providing IPM’s blue-chip purchasers the selection of latest companies and assist,” mentioned NCC Group CEO Adam Palser in a press launch.

Forcepoint provides distant browser isolation know-how with Cyberinc buy

Might 6: Forcepoint has acquired Cyberinc, which gives distant browser isolation (RBI) know-how that provides administrator extra granular management over customers’ internet searching exercise. The corporate plans to combine Cyberinc’s RBI know-how into its SASE platform. “The acquisition of Cyberinc’s Sensible Isolation capabilities is the primary of many investments Forcepoint will make to reinforce person productiveness, decrease operational burdens and eradicate conventional monolithic merchandise by way of a best-in-class SASE cloud service,” mentioned Forcepoint CEO Manny Rivelo in a press launch. Time period of the acquisition weren’t disclosed.

LiveAction buys community detection and response vendor CounterFlow AI

Might 4: Community efficiency administration agency LiveAction has acquired CounterFlow AI, a community detection and response (NDR) supplier. The deal will add encrypted visitors evaluation for safety incident detection and response to LiveAction’s community efficiency monitor and diagnostics platform. “NetOps and SecOps groups are going through superior safety threats hiding inside the rising tide of encrypted visitors, and shedding an inordinate period of time coordinating to triage alerts and potential incidents,” mentioned Stephen Stuut, CEO of LiveAction, in a press launch. “Companies at present want end-to-end visibility for each community efficiency and safety administration, which is why CounterFlow AI’s cutting-edge NDR capabilities are such an ideal match for our platform.” Phrases of the deal weren’t disclosed.

Accenture to amass French cybersecurity companies supplier Openminded

April 29: World skilled companies firm Accenture has entered into an settlement to by Openminded, a cybersecurity companies agency that gives advisory, managed safety companies, and cloud and infrastructure companies in Europe. “The alliance of our expertise and capabilities completely leverages our experience and would enable us to ship on a world scale,” mentioned Openminded founder and CEO Herve Rousseau in a press launch. Phrases of the sale weren’t launched.

Non-public fairness agency Thoma Bravo to purchase Proofpoint

April 26: Cybersecurity and compliance firm Proofpoint has agreed to be acquired by Thoma Bravo. It is the most recent in a string of safety distributors that the non-public fairness agency has purchased, together with Wombat, ObserveIT and Meta Networks. “Thoma Bravo is an skilled software program investor, offering capital and strategic assist to know-how organizations, and our partnership will speed up Proofpoint’s development and scale at a good sooner tempo,” mentioned Proofpoint Chairmand and CEO Gary Steele in a press launch. Thoma Bravo will take Proofpoint non-public as soon as the $12.3 billion deal is finalized. 

Rapid7 acquires open-source neighborhood Velociraptor

April 21: Velociraptor’s know-how provides safety analytics and automation vendor Rapid7 a foothold within the digital forensics and incident response house. The corporate has pledged to proceed to develop Velociraptor’s instruments and construct its neighborhood. “We strongly consider that partnership with the open-source neighborhood is without doubt one of the most necessary methods to maneuver the safety business ahead and make the digital world a safer place for everybody,” mentioned Rapid7 Senior Vice President of Detection and Response Richard Perkett in a press launch. “We stay up for bringing our experience in rising and nurturing open-source communities to Velociraptor, whereas additionally enhancing our monitoring, digital forensics, and incident response capabilities for patrons.” Phrases of the deal weren’t disclose.

Mastercard buys Ekata for digital id verification

April 17: Fee community processor Mastercard has acquired Ekata, recognized for its machine-learning-based know-how to detect “good” from “unhealthy” customers in real-time throughout transactions. “The shift to a extra digital world requires actual options to safe each transaction and instill belief in each interplay,” mentioned Ajay Bhalla, president of cyber and intelligence options at Mastercard, in a press launch. “With the addition of Ekata, we’ll advance our id capabilities and create a safer, seamless method for customers to show who they are saying they’re within the new digital economic system.” Mastercard can pay $850 million for Ekata. 

VMware completes acquisition of API safety agency Mesh7

March 31: VMware has finalized its buy of Mesh7, which is able to enable VMware to convey “visibility, discovery and higher safety to APIs,” in response to a weblog put up. The transfer provides VMware Mesh7’s contextual API habits safety answer, which is predicted to assist VMware ship on a promise to supply “trendy software companies” utilizing open-source choices. Phrases of the acquisition weren’t launched.

Alacrinet Consulting Providers buys Chamber’s Key

March 31: Alacrinet Consulting Providers provides safety analysis and penetration testing to its choices with its buy of Chamber’s Key. With the acquisition, the corporate is launching a brand new division referred to as Alacrinet Safety Labs, which is able to analysis new Widespread Vulnerabilities and Exposures (CVEs) and publish outcomes and suggestions. “As we develop the staff, we’re additionally seeking to implement a coaching course to certify the ability degree and expertise of our penetration testers. At the side of their technical certifications, our coaching course will present penetration testers with finest practices and processes that join their testing with the enterprise objectives and safety options,” Mike Pena, CEO of Chamber’s Key and now VP of penetration testing at Alacrinet, mentioned in a press launch. Phrases of the acquisition weren’t launched.

Plurilock publicizes intent to amass Aurora Methods Consulting

March 29: US-based cybersecurity options supplier Plurilock has entered right into a definitive share buy settlement to amass safety know-how and companies firm Aurora Methods Consulting. The deal will enhance Plurilock’s presence within the authorities market. Aurora’s key prospects embody the US Division of Protection, the US Division of the Treasury, and the US Nationwide Aeronautics and Area Administration. “By incorporating Plurilock’s cutting-edge know-how platform into our product providing, our purchasers will obtain a extra strong and complete id authentication answer, which has been tailored to supply secure and safe distant work entry to workers working from house,” mentioned Aurora founder and President Philip de Souza in a press launch. Aurora will perform as an entirely owned subsidiary as soon as the acquisition is full.

Hornetsecurity beefs up e-mail safety choices with acquisition of Zerospam

March 25: Cloud e-mail safety supplier has acquired Canada-based Zerospam, which gives cloud e-mail safety companies to enterprise of all sizes in North America. This comes shortly after Hornetsecurity’s buy of backup answer supplier Altaro in January. Hornetsecurity CEO Daniel Hoffman mentioned they are going to proceed to develop Zerospam’s choices. “We will be investing closely within the Zerospam companion neighborhood and offering them with an expanded vary of latest merchandise in order that they will enhance their prospects’ safety and compliance past their present choices,” he mentioned in a press launch. Phrases of the acquisition weren’t launched.

Kroll acquires UK cybersecurity companies supplier Redscan

March 25: Kroll, a world supplier of governance, danger and transparency companies and merchandise, has bought UK-based Redscan. The corporate plans so as to add Redscan’s prolonged detection and response (XDR) enabled safety operations middle (SOC) platform to its Kroll Responder capabilities to assist a wider array of cloud and on-premise telemetry sources. Redscan can also be recognized for its proprietary cloud-native MDR answer, which correlates occasions and intelligence from main telemetry sources. Phrases of the acquisition weren’t launched. 

VENZA buys MSSP CyberTek Engineering

March 25: With the acquisition of managed safety service supplier (MSP) CyberTek Engineering, VENZA expects to reinforce its information safety and compliance companies for the hospitality business. “By buying CyberTek, we create a force-multiplier impact in addressing a number of the greatest struggles for hoteliers at present: staying forward of technological change whereas guaranteeing compliance and defending their enterprise and visitor information in opposition to vulnerabilities and threats,” mentioned VENZA Chairman and CEO Jeff Venza in a press launch. CyberTek MSSP will turn out to be a solely owned subsidiary of VENZE. Phrases of the sale weren’t disclosed.

MSSP True North Networks acquired by non-public fairness agency

March 23: Non-public fairness agency Bluff Level Associates has purchased True North Networks, which gives IT options, safety and assist to registered funding advisors (RIAs). The transfer bolsters Bluff Level Associates’ portfolio of know-how corporations that serve the monetary companies business. “We consider there’s a substantial demand for safe and versatile cloud-based options suppliers that perceive learn how to serve RIAs and the regulatory framework they function in, and we’re dedicated to serving to True North capitalize on this chance,” Kevin Fahey, Bluff Level Associates managing director, mentioned in a press launch. Phrases of the acquisition weren’t launched.

RingCentral acquires Kindite to ship end-to-end encryption

March 22: RingCentral has bought cryptographic applied sciences supplier Kindite. It’s a expertise and know-how acquisition, as RingCentral will take in the Kindite staff into its personal workforce and incorporate Kindite know-how into RingCentral’s merchandise. This can enable RingCentral to supply end-to-end encryption over its world communications platform. Phrases of the sale weren’t disclosed.

DevOps to DevSecOps—Copado acquires New Context

March 17: DevOps platform supplier Copado expands its DevSecOps companies with the buy of New Context, whose prospects embody GE, Kaiser Permanente, and Royal Dutch Shell. “By combining Copado DevOps and worth stream know-how with New Context’s breadth and data of DevSecOps, enterprises can extra effectively navigate by way of multi-cloud digital transformations with much less danger and extra profitable outcomes,” mentioned Copado CEO Ted Elliott in a press launch.  Phrases of the acquisition weren’t launched.

Recorded Future publicizes intent to amass fraud analytics vendor Gemini Advisory

March 16: Enterprise intelligence supplier Recorded Future has agreed to amass Gemini Advisory in a deal price $52 million. The acquisition is predicted to speed up Recorded Future’s development within the fraud analytics market. “In a short while, Gemini Advisory has turn out to be a frontrunner within the fraud house with distinctive choices in each fee card intelligence and service provider fraud intelligence. …becoming a member of forces with Gemini Advisory expands the worth we ship for patrons throughout enterprise safety and fraud,” mentioned Dr. Christopher Ahlberg, CEO and co-founder, Recorded Future, in a press launch.

Sonatype boosts code-analysis capabilities with buy of MuseDev

March 16: Sonatype, which sells instruments for software program provide chain administration and safety, has acquired MuseDev. The corporate’s important product robotically analyzes every developer pull request to assist discover safety, efficiency and reliability flaws. “…with the acquisition of MuseDev, we’re additional increasing our platform to assist prospects robotically management the standard of code their builders write,” mentioned Wayne Jackson, CEO of Sonatype, in a press launch. “Coupled with our just lately launched Nexus Container and Infrastructure as Code options, we are actually delivering a developer-friendly and full-spectrum software program provide chain administration platform….” Phrases of the acquisition weren’t launched.

Lookout buys SASE firm CipherCloud

March 15: Lookout, a supplier of cell endpoint safety options, has entered the SASE market with the acquisition of CipherCloud. Product classes that CipherCloud presents embody cloud entry safety dealer (CASB), zero-trust community entry (ZTNA), and information loss prevention (DLP). The objective of the acquisition was to supply an “end-to-end platform that secures a corporation’s complete information path from endpoint to cloud,” in response to a Lookout press launch. Phrases of the deal weren’t disclosed.

SailPoint Applied sciences introduced intent to purchase ERP Maestro

March 12: As soon as finalized, the acquisition of SaaS governance, danger and compliance (GRC) supplier ERP Maestro will add segregation-of-duties (SoD) capabilities to SailPoint’s id safety providing. This deal carefully follows Sailpoint’s acquisition of Intello, a SaaS administration firm that helps organizations uncover, handle, and safe SaaS purposes, in late February. The corporate mentioned that the addition of ERP Maestro will present an “built-in strategy for efficient id safety controls and SoD oversight now required to identify and cease dangers posed by potential insider SoD conflicts.” Phrases of the acquisition weren’t introduced.

Fortinet quietly buys ShieldX

March 10: Enterprise safety platform supplier Fortinet has acquired ShieldX, which gives a platform to safe multi-cloud environments. The deal was not instantly introduced, nevertheless it was confirmed in a ShieldX weblog put up. “ShieldX extends perimeter safety and campus segmentation with east-west lateral motion prevention. Together with Fortinet, ShieldX permits prospects to get an end-to-end view of end-users, workstations, and OT gadgets from the person endpoint to the information middle….,” in response to the weblog put up. Phrases of the deal weren’t launched.

Sontiq buys fintech breach intelligence vendor Breach Readability

March 9: Identification safety vendor Sontiq has acquired Breach Readability, recognized for its AI-based information breach intelligence options for the fintech business. With the deal, Sontiq so as to add a BreachIQ functionality to its IdentityForce, Cyberscout and EZShield merchandise. Phrases of the deal weren’t introduced.

McAfee sells its enterprise enterprise, turns into pure-play shopper cybersecurity firm

March 8: McAfee Corp. has offered its enterprise safety enterprise to an funding group led by non-public fairness agency Symphony Know-how Group (STG) for $4 billion. STG had earlier acquired RSA from Dell Applied sciences in February 2020. “This transaction will enable McAfee to singularly concentrate on our shopper enterprise and to speed up our technique to be a frontrunner in private safety for customers,” mentioned McAfee CEO Peter Leav in a press launch. McAfee’s enterprise enterprise can be rebranded as soon as the deal is finalized.

Okta buys IAM rival Auth0 for $6.5 billion

March 3: Okta seeks to solidify its place as an enterprise id administration companies supplier with its buy of rival Auth0. The 2 product strains will proceed to function independently and be developed. “I’ve shared my imaginative and prescient for a future through which organizations solely depend on just a few main clouds: an infrastructure cloud, a collaboration cloud, a CRM cloud — and we’re on a mission to ascertain id as one of many main clouds,” mentioned Okta CEO Todd McKinnon in a weblog put up. “Okta and Auth0 share the identical imaginative and prescient for the id market, and we all know that we’ll obtain it sooner collectively.” The sale is but to be finalized.

KnowBe4 provides privateness and compliance coaching with MediaPRO purchase

March 3: Safety consciousness coaching supplier KnowBe4 has acquired MediaPRO, one other safety and privateness coaching supplier. With the acquisition, KnowBe4 intends to supply extra privateness and compliance coaching modules, in response to a press launch. Phrases of the deal weren’t disclosed.

Non-public fairness agency merges id safety corporations Thycotic and Centrify

March 2: TPG Capital has mixed two of its just lately acquired corporations within the id safety house: Thycotic and Centrify. Thycotic is understood for its cloud-first id safety options, whereas Centrify is a participant within the privileged entry administration (PAM) market. “Combining these two synergistic platforms permits us to supply prospects an expanded vary of merchandise to deal with their more and more complicated safety necessities,” mentioned James Legg, who will turn out to be president of the merged corporations, in a press launch. Legg beforehand was CEO of Thycotic.

Kaseya boosts its MSP choices with buy of RocketCyber

February 23: Kaseya, which gives safety administration options to managed service suppliers (MSPs), has acquired RocketCyber, which is able to proceed to function individually inside Kaseya. RocketCyber gives a cloud-agent SOC designed for MSPs. “The addition of RocketCyber makes Kaseya IT Full the one built-in platform available in the market to ship managed SOC, automated inner risk detection, credential monitoring, anti-phishing and extra for a really complete, end-to-end cybersecurity suite that tackles all of at present’s modern-day threats,” mentioned Fred Voccola, CEO, Kaseya, in a press launch.

Proofpoint in settlement to purchase DLP vendor InteliSecure

February 22: Proofpoint has introduced its intent to amass InteliSecure, a supplier of DLP managed companies, for $62.5 million. The corporate will use InteliSecure’s know-how to reinforce the information safety capabilities of the Proofpoint cloud platform. “We’ve seen distinctive buyer demand for info safety managed companies as organizations are persevering with to work in a cloud-first, remote-oriented world,” mentioned Gary Steele, Proofpoint CEO, in a press launch. 

CrowdStrike publicizes intent to amass Humio

February 18: With Humio, CrowdStrike plans incorporate the corporate’s cloud log administration and observability know-how into its cloud endpoint and workload safety options. The objective, in response to a press launch, is to broaden CrowdStrike’s XDR capabilities. “The mixture of real-time analytics and sensible filtering constructed into CrowdStrike’s proprietary Risk Graph and Humio’s blazing-fast log administration and index-free information ingestion dramatically accelerates our XDR capabilities past something the market has seen thus far,” mentioned CrowdStrike CEO George Kurtz in a press launch. The worth of the deal is predicted to be $400 million.

Palo Alto Networks to amass cloud safety agency Bridgecrew

February 16: Palo Alto Networks has introduced its intent to amass Bridgecrew for $156 million. The corporate plans to include Bridgecrew’s know-how with its Prisma Cloud cloud-native safety platform. “We’re thrilled to welcome Bridgecrew and their extensively adopted and trusted developer safety platform to Palo Alto Networks. When mixed, Prisma Cloud prospects will profit from having safety embedded within the very basis of their cloud infrastructure,” mentioned Palo Alto Networks CEO and chairman Nikesh Arora in a press launch.

Tenable to amass Alsid for its Lively Listing know-how

February 10: Tenable Holdings has introduced its intent to purchase Alsid for $98 million. The deal would enable Tenable to convey Alsid’s know-how and experience in discovering Lively Listing monitoring to its cyber publicity and danger administration platform. “Tightly controlling the privileges of accounts in Lively Listing is as foundational to lowering danger to the enterprise as the fundamental blocking and tackling of deploying safety updates. … attackers go after the Lively Listing infrastructure to extend entry and set up persistence,” mentioned Amit Yoran, chairman and CEO, Tenable, in a press launch.

SentinelOne buys Scalyr for autonomous XDR

February 9: The acquisition of cloud-based information analytics platform supplier Scalyr will enable SentinelOne to “ingest, correlate, search, and motion information from any supply, delivering the business’s most superior built-in XDR platform for realtime risk mitigation throughout the enterprise and cloud,” in response to a press launch. Phrases of the sale weren’t launched.

Rapid7 acquires Kubernetes safety supplier Alcide.IO

February 1: Safety analytics and automation agency Rapid7 has purchased Israeli agency Alcide.IO for $50 million. Alcide’s product gives code-to-production safety for Kubernetes deployments. “With the intention to take full benefit of the pace and innovation Kubernetes can unlock for a corporation, safety must be tightly built-in with out getting in the best way,” mentioned Brian Johnson, senior vp of cloud safety at Rapid7, in a press launch. “With Alcide, we are able to allow organizations to repeatedly safe and shield their rising Kubernetes deployments whereas giving builders the liberty to quickly develop and ship purposes.”

MDR meets EDR as Huntress acquires know-how from Stage Impact   

January 12: Managed detection and response (MDR) vendor Huntress has bought endpoint detection and response (EDR) know-how, referred to as Recon, from startup Stage Impact. Recon merges endpoint safety with community visitors visibility. “Our core telemetry at present focuses totally on persistence-enabled assaults. By integrating Recon, our platform will reply to malicious community classes, occasion logs and non-persistent threats, permitting us to assist broader cybersecurity use circumstances and defend extra assault surfaces,” mentioned Huntress CEO Kyle Hanslovan in a press launch.

Copyright © 2021 IDG Communications, Inc.

Leave a Reply

Your email address will not be published. Required fields are marked *

Related Posts