Forty-five cybersecurity-related merger and acquisition (M&A) deals were announced in January 2025.
SecurityWeek tracked more than 400 M&A deals in 2024. A detailed M&A report will be published in the coming days.
Here is a list of the most important cybersecurity M&A deals announced in January 2025:
Identity security and access management solutions provider 1Password has acquired UK-based Trelica to extend the capabilities of its extended access management platform. Trelica will also bring advanced SaaS spend optimization and compliance capabilities to 1Password’s platform.
Citrix has announced the strategic acquisition of Germany-based Unicon, provider of the secure endpoint operating system eLux. The acquisition of Unicon enables Citrix to provide customers with a secure client OS and endpoint management that improves endpoint security, resiliency and operational costs, while providing a seamless end-to-end experience for access to corporate applications and desktops.
Blockchain data platform Chanalysis announced buying Israel-based Alterya, which enables financial institutions, digital wallets, and cryptocurrency service providers to prevent fraud. Using Alterya technology, Chainalysis can provide real-time proactive fraud protection for payments and enhanced fraud detection. Chanalysis reportedly paid $150 million for Alterya.
Exposure management solutions provider CYE has acquired Solvo’s technology for Cloud Security Posture Management (CSPM) and Cloud Infrastructure Entitlement Management (CIEM). The goal is to enhance its cloud security capabilities.
Darktrace acquires Cado Security
Darktrace announced the acquisition of UK-based incident investigation and response firm Cado Security. The cybersecurity giant plans on continuing to enhance Cado’s existing products, while also combining Cado’s investigation technology with its own platform.
Cybersecurity private equity firm Option3 announced that its Enigma platform is acquiring Dellfer, a firmware security company specializing in automotive and IoT. The goal is to continue the expansion of its zero trust cybersecurity platform.
Cyber disaster recovery firm Fenix24 has announced the acquisition of application security company vArmour. The deal will enable Fenix24 to enhance Argos99, which helps improve cyber resilience and incident recovery. The announcement comes a few months after the shutdown of vArmour was announced.
Endpoint management and security firm NinjaOne is set to acquire Australian cloud data backup, archiving, and recovery solutions provider Dropsuite for roughly $252 million. The plan is to combine NinjaOne’s automated endpoint management platform with Dropsuite’s data protection suite to provide IT and MSP organizations with extended data protection, automated setup and recovery, native multitenancy, and enhanced discovery capabilities.
Neqst acquires WithSecure’s consulting business
Swedish investment firm Neqst is acquiring the cybersecurity consulting business of Finland-based WithSecure (formerly F-Secure) for €22.5 million ($23 million). The transaction is expected to be completed in the second quarter of 2025.
Searchlight Cyber acquires Assetnote
Dark web intelligence and monitoring firm Searchlight Cyber has acquired Australia-based attack surface management (ASM) company Assetnote, reportedly for AUD 100 million (USD 62 million). Searchlight Cyber will integrate Assetnote’s ASM solution with its own solutions to create a Continuous Threat Exposure Management (CTEM) platform.
Tenable to acquire Vulcan Cyber
Tenable plans to acquire exposure management company Vulcan Cyber for roughly $150 million in cash and stock. Vulcan’s solutions will improve Tenable’s exposure management platform, including capabilities that will enhance customers’ ability to consolidate exposures across their security stack, prioritize risks, and streamline remediation.
Veracode acquires Phylum assets
Software code analysis firm Veracode announced the acquisition of key assets from software supply chain security firm Phylum, including malicious package analysis, detection, and mitigation technology.
Other cybersecurity M&A deals announced in January 2025:
Agile Defense acquires IntelliBridge
CyberMaxx acquires Cybersafe Solutions and onShore Security
CyberlinkASP acquires MSP division of Cosentus Holdings
Flexera to acquire NetApp’s FinOps business
HPN Holdings to acquire Cybeta
HUB Cyber Security acquires BlackSwan Technologies
JumpCloud acquires Stack Identity
Netsurit acquires US Computer Connection
Patria acquires ILIAS Solutions
Quorum Cyber acquires Kivu Consulting
Rashi Peripherals acquires Satcom Infotech
Sectigo acquires Entrust public certificate business
Tidal Cyber acquires Zero-Shot Security
Valeo Networks acquires Verus Technology Solutions
Xpect Solutions acquires GovDefender
Related: Cybersecurity M&A Roundup: 37 Deals Announced in December 2024
Related: Cybersecurity M&A Roundup: 49 Deals Announced in November 2024
