Twenty-eight cybersecurity-related merger and acquisition (M&A) deals were announced in September 2023.
An analysis conducted by SecurityWeek shows that more than 210 cybersecurity-related mergers and acquisitions were announced in the first half of 2023.
AnyTech365 (Anteco Systems), a Spain-based company that provides IT security and support to consumers and small businesses, will go public following a merger with Zalatoris Acquisition Corp, a special purpose acquisition company incorporated in Delaware.
Tech-focused investment firm Battery Ventures has acquired the application security testing software business of GrammaTech. As a result of the transaction, a new company named CodeSecure is being launched. GrammaTech will continue to offer cybersecurity research and development services and tools to US government customers.
Check Point has announced buying Atmosec, an early-stage start-up based in Israel that specializes in the discovery and disconnection of malicious SaaS applications. The deal enables Check Point to enhance its SaaS security offering.
Secure access service edge (SASE) company Netskope has acquired France-based digital experience monitoring (DEM) firm Kadiska. The deal helps Netskope expand and enhance its DEM capabilities.
Netcraft, a UK-based company that specializes in cybercrime detection and disruption, is buying Australian online brand protection firm FraudWatch. The acquisition will help the company expand its capabilities and accelerate growth in North America and the APAC region.
SafeBase, a company that helps security teams automate the security review process and accelerates sales deals, is buying Stacksi, an AI-powered security questionnaire automation platform. The goal is to eliminate the time-consuming and cumbersome task of responding to security questionnaires in the B2B buying process.
Exposure management solutions provider Tenable has entered into a definitive agreement to acquire Israeli cloud security startup Ermetic for roughly $240 million in cash and $25 million in restricted stock and RSUs.
Germany-based SecurityBridge is acquiring Netherlands-based Protect4S. Both companies specialize in SAP security. SecurityBridge specializes in monitoring SAP systems and detecting attacks in real-time. Protect4S specializes in the automation and simplification of SAP cybersecurity.
Ireland-based Stryve is acquiring US tech consulting firm Futuralis. The deal will help Stryve launch a new multi-cloud security service, as well as aid its global expansion.
Enterprise data observability firm Acceldata has acquired India-based Bewgle, a company that specializes in AI, natural language processing, and LLMs. The deal enables Acceldata to expand its capabilities into AI and LLM pipelines, to eliminate risk and ensure reliable and high quality data pipelines.
Secure IoT connectivity solutions provider AddSecure has acquired multi-brand telematics company Clifford Group for its mobile security (anti-vehicle theft) and connected mobility solutions. Both companies are based in Europe. Clifford Group will become a new business unit of AddSecure called Smart Mobility.
Supply chain risk management data, software and services provider Apexanalytix announced buying cyber risk management firm Darkbeam. The transaction enables Apexanalytix to enhance its capabilities.
Private equity firm Arlington Capital Partners has agreed to acquire Exostar from Thoma Bravo for an undisclosed amount. Exostar provides business collaboration solutions for highly regulated industries. Its offering includes identity and access management (IAM), secure access, and compliance products.
Cisco has entered into a definitive agreement to acquire data analysis, security and observability solutions provider Splunk (NASDAQ: SPLK) in a deal valued at $28 billion.
CrowdStrike has announced plans to acquire Bionic, a Silicon Valley startup specializing in application security posture management. The cash-and-stock transaction is valued in the range of $350 million and enables CrowdStrike to beef up its enterprise cloud security portfolio.
Network monitoring and management firm Domotz has purchased GlassWire, a company that provides endpoint security and traffic monitoring software. As a result of the acquisition, the company unveiled GlassWire for Business, a new product providing endpoint visibility, network security, and traffic monitoring tools.
Cybersecurity and managed services provider Neovera announced the acquisition of 10-D Security and sister company AppliedCS. 10-D Security specializes in cybersecurity, risk management, IT compliance and audit assessment, and it will help Neovera expand its cybersecurity and compliance capabilities.
Identity and acess management (IAM) firm ProofID has bought identity governance and administration (IGA) integrator Regatta. The combined business is expected to generate over $32 million in revenue in 2023. Regatta will initially be ‘a ProofID company’ and will later be fully integrated into ProofID.
Endpoint management firm Recast Software has acquired Dutch application management company Liquit. The deal enables Recast to offer customers a complete application delivery platform and strengthen its position in endpoint and application management.
Cybersecurity firm Sapphire has announced the acquisition of Awen Collective, a specialist in reducing cyber risks in operational technology (OT). Both companies are based in the UK. The move bolsters Sapphire’s services, enabling it to help organizations in the UK secure their IT and OT systems from cyber threats.
Cybersecurity and other tech solutions provider Stratascale has acquired attack surface management (ASM) company Vector0. The deal helps Stratascale strengthen its cybersecurity services.
Network security firm WatchGuard Technologies announced buying CyGlass Technology Services, whose AI-based technology will improve WatchGuard’s network detection and response and open XDR capabilities.
SecurityWeek is tracking deals involving managed security services providers (MSSPs) and distributors separately. Here is a list of deals from September 2023: