Cybersecurity M&A Roundup: 40 Deals Announced in March 2021
Tens of cybersecurity-related mergers and acquisitions were announced in March 2021, including by KnowBe4, Fortinet, IronNet, Lookout, Recorded Future and VMware.
Palo Alto-based IT security consulting firm Alacrinet Consulting Services acquired security research company Chamber’s Key to expand its cybersecurity portfolio.
Private equity firm Bluff Point Associates acquired managed security services provider (MSSP) True North Networks. Bluff Point added True North to its portfolio of financial services-focused tech companies amid increasing demand by registered investment advisors (RIAs) for security and privacy solutions.
Cloud email security company Hornetsecurity announced buying Zerospam, a Canada-based company that provides cloud email protection solutions to SMBs in North America. Hornetsecurity said the acquisition is a strategic step to expand its reach in the region.
Governance, risk and transparency solutions provider Kroll acquired Redscan, a cybersecurity company based in the UK, for its security operations center (SOC) and extended detection and response (XDR) technology.
Enterprise authentication technologies provider Plurilock Security is set to acquire all of the issued and outstanding securities of Aurora Systems Consulting, a California-based cybersecurity company that provides products and services to private and government organizations. The deal is part of Plurilock’s growth strategy and its primary goal is to boost sales.
Enterprise communications and contact center solutions provider RingCentral acquired Kindite, a developer of cryptographic technologies designed to reduce security and privacy risks to information and applications in the cloud. RingCentral said the newly acquired technology will be incorporated into its communications platform in an effort to provide enhanced security capabilities.
Data protection, compliance, and training solutions provider VENZA acquired CyberTek Engineering, an MSP that offers a wide range of IT services and solutions for businesses. VENZA said the acquisition complements its existing security solutions and increases its technical talent.
India-based IT consulting giant Wipro acquired Ampion, an Australian company that provides cyber security, DevOps and quality engineering services.
Data protection and cybersecurity solutions provider Acronis acquired Synapsys, a South Africa-based distributor of Acronis products in Africa. Synapsys will be integrated into Acronis and it will be responsible for all sales of the company’s cyber protection solutions in Africa.
UK-based insurance company CFC announced buying Australian cybersecurity and incident response firm Insane Technologies in an effort to extend its in-house incident response team.
DevOps platform provider Copado is acquiring New Context, a company that provides multi-cloud DevSecOps services to large enterprise, infrastructure and government cloud customers. According to Copado, the deal will help it expand its DevSecOps platform.
Enterprise security solutions provider Fortinet has acquired ShieldX, a company that specializes in cloud and network security. The acquisition was completed this month, but it was not publicly announced by Fortinet.
IronNet Cybersecurity is merging with LGL Systems Acquisition, which will help the cybersecurity company accelerate growth. Following the acquisition, IronNet will be listed on the New York Stock Exchange under the symbol IRNT. The pro forma enterprise value of the combined firm is expected to be $927 million.
Mobile security company Lookout acquired CipherCloud, a firm that specializes in Secure Access Service Edge (SASE). The goal is to create a platform that provides end-to-end security — from endpoints to the cloud — by combining CipherCloud’s SASE technology with Lookout’s Mobile Endpoint Security product.
Managed cybersecurity, IT, and SD-WAN solutions provider Meriplex is buying Texas-based managed services provider HBR Technologies. Meriplex said the deal allows it to “have a greater outreach and expansion into the Dallas-Fort Worth Metropolitan market while also increasing their technical and sales workforce to support and onboard more clients.”
Enterprise-grade call verification and fraud detection firm Next Caller was acquired by Pindrop Solutions, which provides identity, security and trust solutions for voice interactions. The two companies will provide security offerings for call center operators. Next Caller will operate as a wholly-owned subsidiary of Pindrop.
Cloud-native risk analytics company QOMPLX completed the acquisition of cyber intelligence firm Hyperion Gray. QOMPLX says Hyperion Gray’s cybersecurity and OSINT expertise complements and strengthens its risk analytics, penetration testing, and other cybersecurity offerings.
Threat intelligence company Recorded Future acquired fraud analytics startup Gemini Advisory in a $52 million deal. Recorded Future believes the acquisition will help it expand into the financial services and payment processing markets. Gemini Advisory will operate as an independent business unit inside of Recorded Future.
Software supply chain management solutions provider Sonatype bought code analysis platform MuseDev, which automatically analyzes each developer pull request in search of security, performance and reliability bugs.
Australian cybersecurity and networking solutions provider Tesserent acquired the managed security services business of Australia-based Secure Logic for roughly A$22 million (USD17 million) in cash and stock. Tesserent said Secure Logic services are a strategic addition that will help its government division.
Identity services provider Trust Stamp announced the acquisition of PixelPin, a company that provides an image-based account access solution. Trust Stamp said the acquisition will further enhance its portfolio of solutions.
Virtualization giant VMware acquired cloud-native API security company Mesh7 in an effort to help customers make their applications more secure. VMware said Mesh7 technology will enable it to bring visibility, discovery, and better security to APIs.
Fintech holding firm Atlantic-Pacific Processing Systems (APPS) has acquired Conformance Technologies, which specializes in solutions for assessing and monitoring risk and compliance for SMBs. APPS, which provides a wide range of solutions for financial services and banking organizations (including security solutions), says the deal is part of its expansion strategy. Conformance will become a standalone wholly-owned subsidiary of APPS.
UK-based managed cloud and cybersecurity services provider Claranet announced buying Spain-based ID Group, which provides cloud and managed IT infrastructure services in Spain. Claranet said the goal of the acquisition is to consolidate its presence in Spain.
Cloud-based software and technology solutions firm Datto acquired Israel-based BitDam, which provides threat detection and protection solutions for email and collaboration tools. BitDam’s security technology will be added to Datto’s offering, which is purpose-built for MSPs.
Apple enterprise management solutions provider Jamf has acquired the technical assets of IT security firm cmdSecurity. This includes the macOS security and compliance suite cmdReporter, which Jamf believes will help it further extend the security capabilities of its platform.
Consumer privacy and security firm Kape has acquired Israel-based Webselenese, which provides consumer-focused privacy and security content, including user-generated reviews. Kape will pay nearly $150 million for Webselenese.
Identity security firm SailPoint announced its intent to purchase ERP Maestro, a provider of SaaS governance, risk and compliance solutions. As a result of the deal, SailPoint plans on combining its identity security solutions with ERP Maestro’s Separation-of-Duty (SoD) controls monitoring solution.
Identity security firm Sontiq acquired data breach intelligence company Breach Clarity. Following the acquisition, Breach Clarity’s BreachIQ personalized breach risk intelligence technology will be added to Sontiq’s IdentityForce, Cyberscout, and EZShield products.
Smith Micro is acquiring Avast’s Family Safety Mobile Business, which includes mobile parental controls services, for $66 million. Smith Micro says the new technology will help it further expand its white label digital safety solutions.
Cloud monitoring, log management and SIEM tools provider Sumo Logic is buying security orchestration, automation and response (SOAR) firm DFLabs. The acquisition will allow Sumo Logic to extend its cloud-native SIEM solution.
UK-based cloud, data analytics and managed services provider TiG announced the strategic acquisition of ThirdSpace, a UK-based professional services provider of Microsoft identity and cybersecurity solutions. TiG, which caters to the financial services sector, says the acquisition will enable it to deliver what it described as a “fully comprehensive suite of services based on Microsoft technology.”
Cybersecurity-focused venture capital firm YL Ventures has sold its stake in cybersecurity asset management company Axonius for $270 million to IPO-focused investors ICONIQ Growth, Alkeon Capital, DTCP, and Harmony Partners. Axonius recently announced raising $100 million at a valuation that exceeded 1 billion.
Criterion Systems, which describes itself as a systems integrator and cyber operations-focused company, acquired Realm Consulting, a contractor for the intelligence sector that specializes in software development, cybersecurity, and systems and network engineering. As a result of the acquisition, Criterion is launching a new Intelligence Solutions business unit.
Identity verification-as-a-service solutions provider IDnow announced buying identity Trust Management, a Germany-based firm that offers digital and offline identification solutions. IDnow said the combined identity verification portfolio will be one of the broadest in Europe.
Cybersecurity awareness company KnowBe4 announced purchasing MediaPRO, which provides security and privacy training solutions. KnowBe4 said its customers will be offered more privacy and compliance training modules following the acquisition.
Identity and access management firm Okta announced plans to buy rival Auth0 in a $6.5 billion deal. Auth0 will operate as an independent business unit within Okta, but over time it will become an integrated offering.
Cloud-native risk analytics company QOMPLX is merging with Tailwind Acquisition, a special purpose acquisition company. As a result of the deal, which values the risk analytics firm at $1.4 billion (post-transaction), QOMPLX will become a public company (QPLX). QOMPLX is also acquiring Sentar, a provider of cyber intelligence, analytics and operations solutions for the national security sector, as well as Tyche, which specializes in financial modelling and insurance.
Healthcare technology company Relay Medical Corp is acquiring IoT cybersecurity firm Cybeats Technologies for $7.18 million. Relay hopes that Cybeats technology will help it provide more secure devices. Cybeats will become a wholly owned subsidiary of Relay.
Private equity company TPG Capital has acquired identity security solutions provider Thycotic from Insight Partners and will merge it with privileged access management company Centrify, which it previously acquired from Thoma Bravo. The goal is to create “one of the most effective SaaS platforms in the identity security market.”