Connect with us

Hi, what are you looking for?


Application Security

Microsoft to Acquire Threat Intelligence Vendor RiskIQ

Microsoft has flexed its muscles in the cybersecurity space, and will drop a reported $500 million in cash to acquire RiskIQ, a late stage startup in the threat intelligence and attack surface management business.

Microsoft has flexed its muscles in the cybersecurity space, and will drop a reported $500 million in cash to acquire RiskIQ, a late stage startup in the threat intelligence and attack surface management business.

The deal, believed to be Microsoft’s largest cybersecurity acquisition, gives Redmond an automatic entry point into the lucrative attack surface management and third party risk-intelligence space.

RiskIQ raised a total of $83 million over multiple venture capital funding rounds since launching in 2009 as a vendor capable of providing early warnings of data exposure on underground hacker forums.  In 2015, RiskIQ acquired PassiveTotal as part of an expansion into the growing attack surface management business.

Microsoft called out the value of RiskIQ’s attack surface management capabilities as part of the impetus for the acquisition.

“As organizations pursue  digital transformation and embrace the concept of Zero Trust, their applications, infrastructure, and even IoT applications are increasingly running across multiple clouds and hybrid cloud environments. Effectively the internet is becoming their new network, and it’s increasingly critical to understand the full scope of their assets to reduce their attack surface,” said Eric Doerr, Vice President of Cloud Security at Microsoft.

[ Related: For Microsoft, Security is a $10 Billion Business ]

Doerr said RiskIQ’s technology helps to manage the security of an organization’s entire attack surface — in the Microsoft cloud, AWS, other clouds, on-premises, and from their supply chain.  

Microsoft has emerged as a cybersecurity powerhouse raking in more than $1 billion a year in revenues from products and and services that include Microsoft’s Azure Active Directory, Intune, Microsoft Defender for Endpoint, Office 365, Microsoft Cloud App Security, Microsoft Information and Governance, Azure Sentinel, Azure Monitoring, and Azure Information Protection. 

Advertisement. Scroll to continue reading.

The RiskIQ acquisition follows Microsoft’s recent purchase of IOT firmware security vendor ReFirm Labs, and CyberX, an IoT security company that provides a digital map of thousands of devices scattered throughout modern organizations.

Related: RiskIQ Raises $15 Million to Help Focus on Critical Industries

Related: Microsoft Acquires Industrial Cybersecurity Company CyberX

Related: Microsoft Buys ReFirm Labs to Expand IoT Firmware Security Push

Related: Microsoft: Firmware Attacks Outpacing Security Investments

Written By

Ryan Naraine is Editor-at-Large at SecurityWeek and host of the popular Security Conversations podcast series. He is a security community engagement expert who has built programs at major global brands, including Intel Corp., Bishop Fox and GReAT. Ryan is a founding-director of the Security Tinkerers non-profit, an advisor to early-stage entrepreneurs, and a regular speaker at security conferences around the world.

Click to comment


Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.


SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.


People on the Move

Professional services company Slalom has appointed Christopher Burger as its first CISO.

Allied Universal announced that Deanna Steele has joined the company as CIO for North America.

Former DoD CISO Jack Wilmer has been named CEO of defensive and offensive cyber solutions provider SIXGEN.

More People On The Move

Expert Insights

Related Content


Less than a week after announcing that it would suspended service indefinitely due to a conflict with an (at the time) unnamed security researcher...

Application Security

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.


A recently disclosed vBulletin vulnerability, which had a zero-day status for roughly two days last week, was exploited in a hacker attack targeting the...


The changing nature of what we still generally call ransomware will continue through 2023, driven by three primary conditions.

Data Protection

The cryptopocalypse is the point at which quantum computing becomes powerful enough to use Shor’s algorithm to crack PKI encryption.


As it evolves, web3 will contain and increase all the security issues of web2 – and perhaps add a few more.

Cybersecurity Funding

SecurityWeek investigates how political/economic conditions will affect venture capital funding for cybersecurity firms during 2023.

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...