SECURITYWEEK NETWORK:

ICS:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Funding/M&A

Okta to Acquire Israeli Startup Spera Security

Okta agreed to acquire Spera Security in a move broaden Okta’s Identity threat detection and security posture management capabilities.
Okta acquires Spera Security

Enterprise identity giant Okta announced on Tuesday that it has agreed to acquire Israeli startup Spera Security in a move broaden Okta’s Identity threat detection and security posture management capabilities. 

Backed by $10 million in funding from YL Ventures, along with investments from angels and serial entrepreneurs at companies like Google, Zscaler, Akamai and Zendesk, Serpa joined a growing list of early-stage startups tackling identity and access sprawl in the enterprise.

The brainchild of Dor Fledel and Ariel Kadyshevitch, Spera’s platform provides proactive, continuous protection from identity-based attacks that combine compromised credentials, social engineering and phishing.

Spera has explained that its product can be used to create real-time, continuously updated, risk and context-based inventory of identities and access across cloud and on-prem environments. The data can then be used to give security teams granular insights for remediating and preventing identity-driven attacks.

“Headquartered in Tel Aviv, Israel, Spera Security builds on Okta’s existing ITDR capabilities with a focus on security posture management and attack surface management,” Arnab Bose, Chief Product Officer, Workforce Identity Cloud at Okta, wrote in a blog post. “With Spera Security, we will equip our customers with richer insights and technology to elevate their Identity security posture management, and quickly identify, detect, and remediate risks.”

Terms of the deal were not disclosed, but some reports say the deal is valued in the range of roughly $100-130 million.

Okta has found itself in the crosshairs of multiple hacking groups this year that target its infrastructure to break into third-party organizations. 

Advertisement. Scroll to continue reading.

In September, Okta said a sophisticated hacking group targeted IT service desk personnel in an effort to convince them to reset multi-factor authentication (MFA) for high-privilege users within the targeted organization. 

In that attack, Okta said hackers used new lateral movement and defense evasion methods, but it has not shared any information on the threat actor itself or its ultimate goal. It’s unclear if it’s related, but last year many Okta customers were targeted as part of a financially motivated cybercrime campaign named 0ktapus

Written By

More from

Latest News

Trending

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

CIEM Chat: How to Reduce Cloud Identity Risk
March 26, 2024

Join the session as we discuss the challenges and best practices for cybersecurity leaders managing cloud identities.

Register

Virtual Event: Ransomware Resilience & Recovery Summit
April 17, 2024

SecurityWeek’s Ransomware Resilience and Recovery Summit helps businesses to plan, prepare, and recover from a ransomware incident.

Register

People on the Move

Mike Dube has joined cloud security company Aqua Security as CRO.

Cody Barrow has been appointed as CEO of threat intelligence company EclecticIQ.

Shay Mowlem has been named CMO of runtime and application security company Contrast Security.

More People On The Move

Expert Insights

Related Content

Source Code Security Firm Cycode Launches With $4.6 Million in Funding

Application Security

Source Code Security Firm Cycode Launches With $4.6 Million in Funding

Cycode, a startup that provides solutions for protecting software source code, emerged from stealth mode on Tuesday with $4.6 million in seed funding.

September 24, 2019
Venture Funding for Cybersecurity Venture Funding for Cybersecurity

Cybersecurity Funding

Cyber Insights 2023: Venture Capital

SecurityWeek investigates how political/economic conditions will affect venture capital funding for cybersecurity firms during 2023.

February 3, 2023
Zero Trust and Identity and Access Management Zero Trust and Identity and Access Management

Identity & Access

Cyber Insights 2023 | Zero Trust and Identity and Access Management

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

February 6, 2023
Boxx Insurance Raises $14.4 Million in Series B Funding

Cyber Insurance

Boxx Insurance Raises $14.4 Million in Series B Funding

Cyberinsurance and protection firm Boxx Insurance raises $14.4 million in a Series B funding round led by Zurich Insurance.

February 1, 2023
Okta hack Okta hack

CISO Strategy

Okta Hack Blamed on Employee Using Personal Google Account on Company Laptop

Okta is blaming the recent hack of its support system on an employee who logged into a personal Google account on a company-managed laptop.

November 3, 2023
The Five Stories That Shaped Cybersecurity in 2022

Cybersecurity Funding

The Five Stories That Shaped Cybersecurity in 2022

2022 Cybersecurity Year in Review: Top news headlines and trends that impacted the security ecosystem

December 29, 2022
Network Security Company Corsa Security Raises $10 Million

Cybersecurity Funding

Network Security Company Corsa Security Raises $10 Million

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

October 24, 2022
DMARC Implemented on Half of U.S. Government Domains

Compliance

DMARC Implemented on Half of U.S. Government Domains

Government agencies in the United States have made progress in the implementation of the DMARC standard in response to a Department of Homeland Security...

January 3, 2018