A total of 37 cybersecurity-related acquisitions and mergers were announced in June 2021.
June 1-6
Accenture Federal Services (AFS) acquires Novetta
Accenture Federal Services (AFS), the federal business of professional services giant Accenture, is acquiring Novetta, a company that provides advanced analytics services to government organizations in the US. Novetta provides, among other things, various types of cybersecurity services, including vulnerability research, incident response, digital forensics and malware analysis, and threat intelligence.
Cloud security company Coalfire announced buying Denim Group, a provider of application security solutions. Denim’s assets will enable Coalfire to provide application security testing and training, threat modeling, application architecture reviews, and secure software development lifecycle workshops.
Egress, a UK-based company that specializes in insider risk, has acquired Aquilai, which is also based in the UK and provides email security solutions. Egress also announced the launch of Egress Defend, an email security solution that leverages anti-phishing technology from Aquilai.
FireEye is selling its products business, including the FireEye name, to private equity firm Symphony Technology Group for $1.2 billion in cash. Mandiant, which focuses on threat intelligence and incident response, will once again become a separate company.
Microsoft acquires ReFirm Labs
Microsoft acquired ReFirm Labs, an early-stage startup that helps businesses pinpoint and fix weak links at the firmware layer. ReFirm Labs technology will be offered as a feature in the Azure Defender for IoT product.
Digital identity verification firm Mitek has acquired ID R&D, which provides AI-based voice and face biometrics and liveness detection solutions. ID R&D technology will be integrated into Mitek products, but it will also be offered separately — ID R&D will continue operating under its own brand. ID R&D shareholders will be entitled to up to $49 million in Mitek stock and cash as consideration.
Data protection company OwnBackup has purchased Nimmetry, which provides a platform for integrating SaaS-based data using a microservices architecture. OwnBackup said the deal accelerates its multi-cloud strategy and helps it expand its reach into India, where Nimmetry has a significant presence.
Science Applications International Corp acquires Halfaker and Associates
Science Applications International Corp (SAIC), a provider of technology solutions for the U.S. government, has acquired Halfaker and Associates, a federal health technology solutions provider, for $250 million. The deal helps SAIC expand its health IT portfolio.
US-based managed services provider Thrive acquired UK-based data center services provider ONI. Both companies offer cybersecurity services, among many others. The deal enables Thrive to expand to the UK.
Versar acquires BayFirst Solutions
Versar, a provider of project management services for the US government and commercial customers, acquired BayFirst Solutions, which provides network engineering, cybersecurity, and intelligence support to the U.S. Department of Homeland Security.
June 7-13
Professional services giant Deloitte announced the acquisition of California-based cloud security posture management (CSPM) company CloudQuest. The goal is to strengthen Deloitte’s existing cloud security offerings — including SOAR services and solutions — with CloudQuest’s cloud-native security capabilities.
Bain Capital Private Equity and Crosspoint Capital Partners acquire ExtraHop
Private equity firms Bain Capital Private Equity and Crosspoint Capital Partners announced buying network detection and response solutions provider ExtraHop Networks for $900 million. ExtraHop says the partnership will allow it to invest in its technology and expand its global reach, as well as to expand into the intrusion detection sector. Venture backers Madrona Venture Group and Meritech Capital Partners will exit their stakes in ExtraHop following the deal.
The Instillery acquires TwoBlackLabs
New Zealand-based IT and cybersecurity services provider The Instillery is acquiring privacy consultancy TwoBlackLabs, which is also based in New Zealand. TwoBlackLabs will continue to operate independently under the TwoBlackLabs brand.
JHNA acquires Technology Security Associates (TSA)
Digital engineering company JHNA acquired Technology Security Associates (TSA), which provides cybersecurity, anti-tamper, security systems engineering, supply chain risk management and other solutions. Both companies work with the U.S. government and they both specialize in warfighter solutions. The deal will help JHNA expand its capabilities and services.
Parsons acquires BlackHorse Solutions
Parsons Corporation, a company that provides tech solutions for the defense, intelligence and critical infrastructure sectors, is purchasing BlackHorse Solutions in a deal valued at $203 million. BlackHorse specializes in cyber, electronic warfare, virtual operations, and artificial intelligence. The deal enables Parsons to enhance its capabilities.
RSA spins out fraud and risk intelligence unit as standalone company Outseer
RSA Security announced that its fraud and risk intelligence unit has become a new standalone company named Outseer. Outseer, led by CEO Reed Taussig, was launched to more clearly articulate the benefits of the company’s products and services.
SS8, a company whose lawful interception and monitoring products are used by intelligence agencies and communications providers, acquired Bivio Networks, which helps government agencies and service providers control, monitor and secure critical network infrastructure. SS8 says Bivio’s technology will enable it to strengthen its real-time communication interception products.
Synopsys, a company that provides tools and services for designing chips and electronic systems, acquired Code Dx, which specializes in application vulnerability management. Synopsys said the acquisition will enable it to extend its application security portfolio with vulnerability correlation, prioritization and risk reporting capabilities.
June 14-20
Cerberus Sentinel acquires Ground Control IT
Cybersecurity consulting and managed services provider (MSP) Cerberus Sentinel announced the acquisition of managed security services provider (MSSP) Ground Control IT. Both companies are based in Arizona. Ground Control will become part of Cerberus Sentinel and will focus on integrated risk managed services.
Managed detection and response solutions provider eSentire announced buying CyFIR, which specializes in digital forensics and investigative tools, in an effort to expand its capabilities. CyFIR’s products and services will be rebranded under eSentire’s Cyber Investigations Portfolio.
Forcepoint acquires Deep Secure
Forcepoint, which provides a wide range of cybersecurity services, is acquiring Deep Secure, a UK-based firm that specializes in protecting organizations against malware. Forcepoint plans on integrating Deep Secure’s Threat Removal platform with its Cross Domain Solutions portfolio.
Professional services giant Deloitte announced the acquisition of risk protection solutions provider Terbium Labs. The acquisition should help Deloitte expand its threat intelligence offerings. This is Deloitte’s third cyber acquisition this year, after Root9B and CloudQuest.
SafeToNet acquires Citadel Filters
SafeToNet, a company that specializes in the online safety of children, acquired Citadel Filters, a Canadian company that uses neural networks and machine learning to filter harmful content online. SafeToNet aims to strengthen its technology, particularly on Windows devices, through this acquisition.
June 21-30
Consulting giant Accenture has acquired Sweden-based cyber defense and managed security services provider Sentor for an undisclosed amount. Sentor’s cybersecurity pros will join the Accenture Security team in Sweden, extending the company’s local resources and capabilities. This is Accenture’s 40th acquisition in the last 10 months.
Cloud services giant Amazon Web Services (AWS) has acquired Wickr, a startup that offers end-to-end encrypted communications tools. Wickr services are widely used by government and private sector organizations and AWS has acknowledged that the need for secure communications is accelerating.
CitiusTech acquires SDLC Partners
Healthcare technology services and solutions provider CitiusTech announced buying SDLC Partners, a provider of technology solutions for payer organizations. SDLC also owns cybersecurity company CyLumena.
IT and cloud solutions provider Converge Technology Solutions Corp. has acquired managed IT services provider ExactlyIT. Both companies offer cybersecurity services and Converge said the acquisition will benefit its cybersecurity team. This is Converge’s 20th acquisition since October 2017.
Evergreen Services Group to acquire VirtualArmour
Managed IT services provider Evergreen Services Group is acquiring the operating assets of managed security services provider (MSSP) VirtualArmor. Evergreen’s goal is to expand its cybersecurity capabilities through the acquisition.
Threat monitoring and identity access management provider FYEO has emerged from stealth mode with the acquisition of threat intelligence company Intelliagg. The company has integrated Intelliagg’s IP and code base into its FYEO DI product to improve automated threat alerting.
DevOps solutions provider JFrog is buying IoT security company Vdoo Connected Trust in a deal valued at roughly $300 million. JFrog said the acquisition will help it “deliver new software security capabilities across universal types of software releases in a unified DevOps platform.”
State-owned communications and cybersecurity firm Kordia has acquired MSSP SecOps NZ. Both companies are based in New Zealand. SecOps NZ will operate as Kordia SecOps. In May, Kordia acquired Base2, another New Zealand-based MSP.
LookingGlass Cyber Solutions acquires AlphaWave
Threat intelligence company LookingGlass Cyber Solutions is acquiring AlphaWave, a Texas-based firm that provides attack surface management solutions. LookingGlass said the deal will enable it to expand its attack surface management capabilities.
Mobileum acquires Convene Networks
Mobileum, a company that provides analytics solutions for roaming and network services, security, risk management, and testing and monitoring, acquired Convene Networks, which provides software solutions for the wireless and telecoms markets. Convene Networks will help enhance Mobileum’s core network capabilities.
Ping Identity acquires SecuredTouch
Enterprise identity solutions provider Ping Identity is buying SecuredTouch, which specializes in bot attack prevention, identity risk, and fraud intelligence. Ping Identity said the acquisition will help it improve identity fraud capabilities.
Pondurance acquires Bearing Cybersecurity
Managed detection and response services provider Pondurance acquired Bearing Cybersecurity, which specializes in advisory and assessment services. Pondurance will integrate Bearing’s flagship product, MyCyberScorecard, into its portfolio of advisory and managed services solutions.
Riverside Company acquires controlling stake in Cryptomathic
Global investment firm Riverside Company has acquired a controlling stake in Cryptomathic, a Denmark-based provider of secure server solutions. Cryptomathic’s founder and management team will continue to hold key management positions and a minority stake in the firm.
IT security firm Utimaco is acquiring REALSEC, a Spain-based provider of IT security and Hardware Security Modules (HSMs). Ultimaco says the deal will help it strengthen its solutions portfolio and expand its regional presence.
Related: Cybersecurity M&A Roundup: 36 Deals Announced in May 2021
