More than thirty cybersecurity merger and acquisition (M&A) deals were announced in April 2025.
An analysis conducted by SecurityWeek shows that 405 cybersecurity-related mergers and acquisitions were announced in 2024. Check out the detailed report.
Here is a list of the most important cybersecurity M&A deals announced in April 2025:
Allurity acquires Onevinn and Infigo IS
European cybersecurity services provider Allurity announced the acquisition of Onevinn, a Swedish company specializing in intelligent security and managed services, from Haven Cyber Technologies. Allurity has also bought Croatian cybersecurity company Infigo IS, which specializes in offensive and defensive security, consulting, managed services, and product development.
DNSFilter, a company that specializes in content and threat filtering at the DNS layer, has acquired Zorus, a provider of endpoint-based web filtering and user behavior analytics. The deal enables DNSFilter to extend its capabilities.
Portugal-based fraud prevention firm Feedzai has acquired data orchestration firm Demyst, including its data workflow orchestration platform, intellectual property, and data-integration capabilities. Feedzai aims to unify data orchestration and risk management into a single platform to provide financial institutions with real-time data, analytics, and AI to help them make risk decisions. Feedzai reportedly paid roughly $100 million for Demyst.
Cyber disaster restoration and recovery company Fenix24 announced buying appNovi, which specializes in solutions for mapping the enterprise attack surface. The acquisition complements Fenix24’s recent acquisition of vArmour and enhances the company’s resiliency capabilities, including business continuity, assured recoverability, and rapid recovery.
Hornetsecurity Group to acquire Altospam
German security, compliance, backup, and security awareness solutions provider Hornetsecurity is buying Altospam, a French email security company. This acquisition complements Hornetsecurity’s strategy to provide European-built cybersecurity solutions to organizations worldwide, and enables it to further expand its French expertise and footprint.
Infosys to acquire The Missing Link
India-based digital services and consulting firm Infosys has entered a definitive agreement to acquire Australian cybersecurity firm The Missing Link for USD62 million (AUD98 million). The deal helps Infosys strengthen its cybersecurity capabilities and bolster its presence in the Australian market. The Missing Link brings Red Team and Blue Team capabilities, as well as a Global Security Operations Centre (GSOC).
MOXFIVE, a cybersecurity firm specializing in incident response and business resilience, acquired digital forensics and incident response (DFIR) firm modePUSH. MOXFIVE will integrate modePUSH’s DFIR technology into its offering. modePUSH co-founders will join the MOXFIVE executive team.
Palo Alto Networks to acquire Protect AI
Palo Alto Networks is acquiring US-based AI security company Protect AI, which has developed a platform that enables organizations to secure AI models, conduct AI red teaming, and ensure AI runtime security. Palo Alto Networks has reportedly paid between $500 million and $700 million for Protect AI.
Software supply chain security company Socket has acquired Denmark-based Coana, developer of a static analysis and reachability engine, which will enable Socket to enhance its Software Composition Analysis (SCA) capabilities.
Security operations company Torq announced the acquisition of Israeli stealth startup Revrod for its multi-agent RAG (Retrieval-Augmented Generation) technology, which has been integrated into Torq’s HyperSOC platform. Torq reportedly paid over $20 million for Revrod.
Upwind has acquired Nyx Security, a startup specializing in real-time application-layer threat detection. This is Upwind’s first acquisition and the company says it will enable it to deliver end-to-end cloud security across infrastructure and the applications running on top of it.
Other cybersecurity M&A deals announced in April 2025:
Agile Defense acquires IntelliBridge
Bouygues Telecom Business acquires SecInfra
CipherWave acquires majority stake in Conekt
Cyber Advisors acquires Stratum Security
Indus Net Technologies Limited (INT.) acquires majority stake in Prime Infoserv
Lockmasters acquires Signals Defense
MajorKey Technologies acquires Oxford Computer Group
Momentum acquires Secher Security
Redsquid acquires Computer Security Technology (CST)
Rydal Group acquires Trisoft Limited’s IT division
Related: Cybersecurity M&A Roundup: 28 Deals Announced in February 2025
Related: Cybersecurity M&A Roundup: 23 Deals Announced in March 2025
