Thirty-nine cybersecurity-related merger and acquisition (M&A) deals were announced in October 2022. An analysis conducted by SecurityWeek showed that more than 230 mergers and acquisitions were announced in the first half of 2022.
Managed infrastructure solutions provider 11:11 Systems has acquired the Recovery Services business of Sungard Availability Services. Earlier this year, 11:11 announced the acquisition of Sungard’s Cloud and Managed Services business. 11:11 said the acquisition of the two Sungard businesses will cement its position as one of the largest cyber resiliency and disaster recovery providers.
The Sweden-based Allurity cybersecurity group has acquired Danish company CSIS Security Group, which specializes in threat detection and response services. Last month, Allure announced the acquisition of Spanish company Aiuken for its SOC and cloud security platforms. Allurity says its goal is to become a European cybersecurity powerhouse. It previously acquired Arctic Group, ID North and Pulsen Integration IAM.
IT services and solutions firm ASGN has bought Iron Vine Security, which provides a wide range of cybersecurity services and solutions to government organizations. The deal will help ASGN expand its cybersecurity and zero trust capabilities.
UK-based investment firm Corten Capital has acquired a majority stake in Irish cybersecurity and cloud company Ekco. In August, Ekco announced buying Irish IT firm Unity to enhance its cloud services.
Deloitte Australia is acquiring Australia-based cybersecurity consultancy Hacktive in an effort to expand its managed security services offering and the capabilities of its Cyber Intelligence Centre.
Germany-based iC Consult Group, which provides managed services and consulting focused on identity and access management (IAM), has completed the acquisition of Kapstone Technologies, a company that provides identity and security services. The deal helps it expand its global IAM footprint and managed services capabilities. Earlier this year, iC Consult acquired US-based IAM companies ICSynergy and SecureITsource.
Infinigate Group is merging with Dubai-based Starlink. Both companies are value-added distributors. Starlink will operate under the Infinigate Group. The merged company will have estimated annual revenues of roughly $2.2 billion.
Intercede, a company specializing in identity, credential management and secure mobility, has purchased authentication solutions provider Authlogics for $2.8 million (£2.5 million). There might also be a deferred conditional and staged earnout payment of up to $3.35 million. The deal will help Intercede expand its product portfolio to cover the entire range of authentication options, from passwords to PKI.
Mobile and application security company Pradeo has entered into exclusive negotiations for the acquisition of application security firm Yagaan. Both companies are based in France. Pradeo said it wanted to expand its offering with application source code testing capabilities.
Qualys has acquired Blue Hexagon’s AI/ML technology, which will help it enhance the capabilities of its Qualys Cloud Platform. Customers will be able to better detect vulnerability exploitation, implement adaptive risk mitigation, and augment detection and response.
Red Sift has acquired Hardenize. Both companies are based in the UK and they both specialize in web security. Red Sift said the deal will help it improve its attack surface management capabilities.
SilverEdge has acquired QVine. The companies provide software, cybersecurity and other solutions to government customers. SilverEdge said QVine enables it to add security orchestration, automation and response (SOAR) software development capabilities to its offering.
Private equity firm Thoma Bravo has entered a definitive agreement to acquire identity and access management (IAM) solutions provider ForgeRock for $2.3 billion in cash. ForgeRock will become a privately held company and its stock will no longer be publicly listed.
Security awareness training company KnowBe4 will go private after being acquired by Vista Equity Partners for roughly $4.6 billion in cash.
US-based payment and sensitive data security solutions provider Bluefin has acquired Austria-based TECS Payment Systems, a payments platform-as-a-service provider. Bluefin customers gain omnichannel payment and smartPOS capabilities that will integrate with its payments and data security suite.
Cybersecurity news provider CyberWire has merged with cybersecurity training firm CyberVista to create a new parent company named N2K Networks, which is advertised as the first ‘news to knowledge’ network. Peter Kilpe, CEO of CyberWire, will become the CEO of N2K Networks; and Simone Petrella, CEO of CyberVista, will serve as president of CyberVista and CyberWire.
CyberRisk Alliance, a business intelligence company serving the cybersecurity sector, has acquired the Cyber Security Summit and TECHEXPO Top Secret conferences.
Digital transformation services provider DMI announced buying Ambit Group, which provides data analytics, cybersecurity, and mission support services to the US government. As a result of the deal, Ambit’s data management, analytics, and cybersecurity services will be combined with DMI’s digital transformation expertise.
Identity theft protection and credit monitoring company IDIQ has purchased Countrywide, a firm that provides prepaid legal plans, identity theft protection and financial wellness plans. The deal helps IDIQ expand its brands and offerings.
Consulting firm J.S. Held has acquired cybersecurity consultancy TBG Security in an effort to expand its cybersecurity and investigation services. As a result of the transaction, J.S. Held also adds a specialized group to its global investigations practice in North America.
Cybersecurity awareness training company NINJIO has announced buying Israel-based behavior-centric cybersecurity solutions provider DCOYA. DCOYA’s technology will allow NINJIO to determine a person’s area of greatest vulnerability (greed, fear, obedience, and others) and provide reinforcing education that specifically addresses that vulnerability.
OPSWAT has acquired all assets of Germany-based malware assessment platform FileScan.IO. The OPSWAT Sandbox product will be combined with the FileScan.IO platform, but OPSWAT will also continue to offer FileScan’s free malware analysis service.
European venture capital and private equity firm Smartfin announced a deal to acquire Hex-Rays, the Belgian company behind the widely deployed IDA Pro software disassembler.
SilverEdge Government Solutions has acquired Counter Threat Solutions. The deal adds new all source and counterintelligence, cyber, software development, and identity intelligence capabilities to SilverEdge’s suite of technology solutions provided to the US government.
SecurityWeek is tracking deals involving managed security services providers (MSSPs) and distributors separately. Here is a list of deals from October 2022: