Twenty-three cybersecurity-related merger and acquisition (M&A) deals were announced in June 2023.
An analysis conducted by SecurityWeek shows that more than 450 cybersecurity mergers and acquisitions were announced in 2022.
Romania-based Bitdefender has entered an agreement to acquire Singapore-based Horangi Cyber Security. Bitdefender will incorporate Horangi’s Cloud Infrastructure Entitlement Management (CIEM) and Cloud Security Posture Management (CSPM) capabilities into its GravityZone unified risk and security analytics platform. In addition, Horangi’s proactive risk assessment, red teaming, and penetration testing services will be integrated with Bitdefender’s Managed Detection & Response (MDR) services.
Data analytics and AI company Blattner Tech announced the acquisition of threat intelligence firm Jigsaw Security Enterprise. The deal will help Blattner enhance its cybersecurity capabilities and expand into the machine learning security space. Jigsaw technology will also enable Blattner to better detect malware in encrypted traffic, identify insider threats, and protect data in the cloud.
Financial, insurance and advisory services provider CBIZ has bought information security consulting firm Pivot Point Security. The acquisition of Pivot Point enables CBIZ to enhance its cyber and security services.
Cybersecurity-focused business intelligence firm CyberRisk Alliance has acquired LaunchTech Communications, a PR and communications agency serving cybersecurity and technology companies. CyberRisk Alliance acquired the KNOW Identity Conference in March.
Norway-based risk management and assurance company DNV has acquired more than 93% of shares of Finland-based cybersecurity firm Nixu. The remaining shares will also be acquired and Nixu will be delisted from the Nasdaq Helsinki Stock Exchange. The deal has been valued at €98 million ($106 million). DNV previously acquired ICS security firm Applied Risk.
Accounting, payroll and IT services provider ECIT has acquired a majority share in Kovert, a company that specializes in penetration testing, security testing and cyber attack simulation services. Both companies are based in Norway. ECIT is acquiring 50.1% of Kovert shares, with an option to acquire remaining shares as well.
Exacom, a company that makes recorders for public safety and other mission-critical communications, has acquired SecuLore Solution, which offers cybersecurity services for public safety, critical infrastructure, and local governments, including SOC, assessment, incident response and training. The deal enables Exacom to add security services to its portfolio.
GraVoc, a technology consulting company whose offering includes security services such as risk management, regulatory compliance and IT assurance testing, has purchased Security Management Partners (SMP), which helps organizations build information security programs. The acquisition expands GraVoc’s governance, risk, and compliance offerings and doubles the size of its information security team.
Cloud infrastructure software firm HashiCorp announced a deal to acquire BluBracket, an early stage startup building technology to help businesses scan for secrets hidden in source code.
Enterprise cloud data management firm Informatica is acquiring UK-based data management access and privacy software provider Privitar in an effort to boost its cloud data access management and governance capabilities.
Sweden-based risk management firm Outpost24 announced the acquisition of Belgium-based Sweepatic, a company that has created an external attack surface management (EASM) platform. The deal helps Outpost24 enhance its capabilities.
Fintech solutions provider Ribbit has acquired ValidiFI, a provider of fraud, compliance, and risk mitigation solutions. The deal is expected to make Ribbit the largest banking and payment data platform in the industry.
Developer security firm Snyk has acquired Israel-based application security posture management (ASPM) company Enso Security, reportedly for more than $50 million. Enso technology enables Snyk to expand its capabilities.
Starfish Partners, which provides capital for recruiting firms looking to scale, has acquired NinjaJobs, a community-run jobs platform developed by cybersecurity professionals. The acquisition helps Starfish Partners expand its reach into the cybersecurity industry.
Identity verification solutions provider Socure announced buying automated ID verification firm Berbix for roughly $70 million in cash and stock. The acquisition will accelerate Socure’s international expansion. In addition, the firm has integrated Berbix’s technology into its own offering.
Tech giant Thales is set to purchase Australia-based full-service cybersecurity firm Tesserent for $116 million (A$176 million). The deal would enable Thales to accelerate its cybersecurity development roadmap and expand its footprint in Australia and New Zealand. The Tesserent brand will continue to exist.
Truesec, a Sweden-based company that provides SOC, threat intelligence, offensive security and incident response services, has acquired Denmark-based Venzo Cyber Security, which provides security advisory, solutions, and managed services.
IT operations management firm Virtana has acquired cloud and Kubernetes observability platform OpsCruise. OpsCruise technology enables Virtana to support Kubernetes deployments anywhere and automates anomaly detection to identify suspicious behaviors and data protection.
SecurityWeek is tracking deals involving managed security services providers (MSSPs) and distributors separately. Here is a list of deals from June 2023: