Twenty-three cybersecurity-related merger and acquisition (M&A) deals were announced in June 2023.
An analysis conducted by SecurityWeek shows that more than 450 cybersecurity mergers and acquisitions were announced in 2022.
Bitdefender acquires Horangi Cyber Security
Romania-based Bitdefender has entered an agreement to acquire Singapore-based Horangi Cyber Security. Bitdefender will incorporate Horangi’s Cloud Infrastructure Entitlement Management (CIEM) and Cloud Security Posture Management (CSPM) capabilities into its GravityZone unified risk and security analytics platform. In addition, Horangi’s proactive risk assessment, red teaming, and penetration testing services will be integrated with Bitdefender’s Managed Detection & Response (MDR) services.
Blattner Technologies acquires Jigsaw Security Enterprise
Data analytics and AI company Blattner Tech announced the acquisition of threat intelligence firm Jigsaw Security Enterprise. The deal will help Blattner enhance its cybersecurity capabilities and expand into the machine learning security space. Jigsaw technology will also enable Blattner to better detect malware in encrypted traffic, identify insider threats, and protect data in the cloud.
CBIZ acquires Pivot Point Security
Financial, insurance and advisory services provider CBIZ has bought information security consulting firm Pivot Point Security. The acquisition of Pivot Point enables CBIZ to enhance its cyber and security services.
CyberRisk Alliance acquires LaunchTech Communications
Cybersecurity-focused business intelligence firm CyberRisk Alliance has acquired LaunchTech Communications, a PR and communications agency serving cybersecurity and technology companies. CyberRisk Alliance acquired the KNOW Identity Conference in March.
DNV acquires Nixu
Norway-based risk management and assurance company DNV has acquired more than 93% of shares of Finland-based cybersecurity firm Nixu. The remaining shares will also be acquired and Nixu will be delisted from the Nasdaq Helsinki Stock Exchange. The deal has been valued at €98 million ($106 million). DNV previously acquired ICS security firm Applied Risk.
ECIT acquires majority share in Kovert
Accounting, payroll and IT services provider ECIT has acquired a majority share in Kovert, a company that specializes in penetration testing, security testing and cyber attack simulation services. Both companies are based in Norway. ECIT is acquiring 50.1% of Kovert shares, with an option to acquire remaining shares as well.
Exacom acquires SecuLore Solutions
Exacom, a company that makes recorders for public safety and other mission-critical communications, has acquired SecuLore Solution, which offers cybersecurity services for public safety, critical infrastructure, and local governments, including SOC, assessment, incident response and training. The deal enables Exacom to add security services to its portfolio.
GraVoc acquires Security Management Partners (SMP)
GraVoc, a technology consulting company whose offering includes security services such as risk management, regulatory compliance and IT assurance testing, has purchased Security Management Partners (SMP), which helps organizations build information security programs. The acquisition expands GraVoc’s governance, risk, and compliance offerings and doubles the size of its information security team.
HashiCorp acquires BluBracket
Cloud infrastructure software firm HashiCorp announced a deal to acquire BluBracket, an early stage startup building technology to help businesses scan for secrets hidden in source code.
Informatica acquires Privitar
Enterprise cloud data management firm Informatica is acquiring UK-based data management access and privacy software provider Privitar in an effort to boost its cloud data access management and governance capabilities.
Outpost24 acquires Sweepatic
Sweden-based risk management firm Outpost24 announced the acquisition of Belgium-based Sweepatic, a company that has created an external attack surface management (EASM) platform. The deal helps Outpost24 enhance its capabilities.
Ribbit acquires ValidiFI
Fintech solutions provider Ribbit has acquired ValidiFI, a provider of fraud, compliance, and risk mitigation solutions. The deal is expected to make Ribbit the largest banking and payment data platform in the industry.
Snyk acquires Enso Security
Developer security firm Snyk has acquired Israel-based application security posture management (ASPM) company Enso Security, reportedly for more than $50 million. Enso technology enables Snyk to expand its capabilities.
Starfish Partners acquires NinjaJobs
Starfish Partners, which provides capital for recruiting firms looking to scale, has acquired NinjaJobs, a community-run jobs platform developed by cybersecurity professionals. The acquisition helps Starfish Partners expand its reach into the cybersecurity industry.
Socure acquires Berbix
Identity verification solutions provider Socure announced buying automated ID verification firm Berbix for roughly $70 million in cash and stock. The acquisition will accelerate Socure’s international expansion. In addition, the firm has integrated Berbix’s technology into its own offering.
Thales acquires Tesserent
Tech giant Thales is set to purchase Australia-based full-service cybersecurity firm Tesserent for $116 million (A$176 million). The deal would enable Thales to accelerate its cybersecurity development roadmap and expand its footprint in Australia and New Zealand. The Tesserent brand will continue to exist.
Truesec acquires Venzo Cyber Security
Truesec, a Sweden-based company that provides SOC, threat intelligence, offensive security and incident response services, has acquired Denmark-based Venzo Cyber Security, which provides security advisory, solutions, and managed services.
Virtana acquires OpsCruise
IT operations management firm Virtana has acquired cloud and Kubernetes observability platform OpsCruise. OpsCruise technology enables Virtana to support Kubernetes deployments anywhere and automates anomaly detection to identify suspicious behaviors and data protection.
MSSP
SecurityWeek is tracking deals involving managed security services providers (MSSPs) and distributors separately. Here is a list of deals from June 2023:
Dataprise acquires RevelSec
Daisy acquires ECSC Group
General Informatics acquires Eministration
Lyvia Group acquires ITSS
Modern Networks acquires Bluegrass Group
Related: Cybersecurity M&A Roundup: 36 Deals Announced in May 2023
Related: Cybersecurity M&A Roundup: 38 Deals Announced in April 2023