Thirty-four cybersecurity-related merger and acquisition (M&A) deals were announced in January 2026.
SecurityWeek has cataloged more than 420 M&A deals in 2025. A detailed report will be published in the coming days.
Here are some of the most important cybersecurity M&A deals announced in January 2026:
CrowdStrike to acquire SGNL and Seraphic
CrowdStrike (NASDAQ: CRWD) has signed a definitive agreement to acquire US-based continuous identity and dynamic authorization solutions provider SGNL for $740 million. CrowdStrike also announced plans to buy Israel-based browser runtime security provider Seraphic Security for roughly $420 million, adding in-session browser protection to its Falcon platform for secure web/AI interactions.
PAM/identity security firm Delinea is in the process of acquiring just-in-time runtime authorization and universal access management provider StrongDM. The goal is to combine PAM capabilities with continuous, developer-first access for admins, devs, non-humans, and AI agents in hybrid/cloud environments.
GRC company Diligent acquired Netherlands-based third-party risk management platform 3rdRisk. 3rdRisk’s automated vendor due diligence, monitoring, and AI-powered assessments will enhance Diligent’s risk visibility from the boardroom to the supply chain.
Networking and preemptive security firm Infoblox has entered a definitive agreement to acquire Brazil-based external threat protection provider Axur. Infoblox aims to enhance the detection and takedown of brand abuse, phishing, fraud, and credential exposure.
JumpCloud acquires MacSolution
Identity and device management platform JumpCloud has acquired Brazil-based MSP MacSolution to establish a strategic hub in São Paulo and accelerate secure IT modernization and enterprise readiness.
LevelBlue to acquire Alert Logic managed services business
MSSP LevelBlue is acquiring the managed services business (including MDR, XDR, and WAF) of Alert Logic from Fortra. The goal is to strengthen LevelBlue’s global MDR position by expanding its platform, customer base, threat telemetry, detection/response speed, and global footprint, while Fortra becomes a key technology partner, integrating its software with LevelBlue’s services.
Authentication and mobile security firm OneSpan has announced plans to buy Munich-based Build38, a specialist in SDK-based mobile app protection and RASP. The goal is to expand OneSpan’s App Shielding capabilities with Build38’s in-app, cloud, and AI-integrated technologies, providing stronger protection against mobile threats and deeper telemetry.
European cloud provider OVHcloud has acquired Paris-based Seald, a specialist in end-to-end encryption and zero-knowledge technologies. The goal is to integrate Seald’s encryption solutions natively into OVHcloud offerings.
Application and API security company Radware has announced the acquisition of Israel-based Pynt, an API security testing startup. The deal strengthens Radware’s API security portfolio with Pynt’s automated pre-production testing and dynamic vulnerability discovery, delivering full-lifecycle protection.
ThreatModeler acquires IriusRisk
Threat modeling firm ThreatModeler acquired Spain-based threat modeling platform IriusRisk to unite the top two enterprise platforms, expand global reach, and accelerate innovation in application security. ThreatModeler reportedly paid $100 million for IriusRisk.
Other cybersecurity M&A deals announced in January 2026:
11:11 Systems acquires Ntirety
Axiom GRC acquires AssurancePoint
CyberMaxx acquires Corvid Cyberdefense
Gryphon Investors acquires majority stake in Fortreum
Horizon Capital acquired a majority stake in Threatscap
Integrity360 acquires Adventus360
LatticeFlow AI acquires AI Sonar
New Charter Technologies acquires NetSource One
Parsons acquires Altamira Technologies Corporation
Satin Creditcare acquires majority stake in QTrino Labs
Sole Source Capital acquires Brite
TechnoMile merges with SIMS Software
Tetra Tech acquires Halvik Corp
Thinkst Canary acquires DeceptIQ
Usercentrics acquires MCP Manager
Vocodia to acquire majority stake in Privacy Pal
Westcon-Comstor acquires REAL Security
Wolters Kluwer acquires StandardFusion
Related: Cybersecurity M&A Roundup: 30 Deals Announced in November 2025
Related: Cybersecurity M&A Roundup: 30 Deals Announced in December 2025
