Uncertainty and instability marked the end of 2022 for many in the tech sector, a trend that bled into the beginning of 2023. Following on the heels of a drought in IT talent came mass layoffs at many of the world\u2019s biggest tech companies as predictions of recession loomed and war in Ukraine dragged on with no end in sight.\n\nGlobal concern over cybersecurity has never been higher, with attacks coming fast and furious and in ever-growing numbers, and 65% of organizations planned to increase cybersecurity spending in 2023. That means CISOs may be pressured to do more with what they have as budgets shrink even as demand for security increases. And they should be aware of what could change if one of their vendors is acquired in this climate.\n\nCorporate deals have dropped from the highs of 2021 as well as investors proceed with caution, eyeing interest rate increases and the possibility of a recession. There were some indications that cybersecurity might be an outlier in 2023\u2014that M&A activity might remain a little more robust than in other parts of the tech world. \u201cThere are abundant opportunities for innovation in cybersecurity as new technology breakthroughs, such as the near-human capabilities of ChatGPT, introduce new and largely unaddressed security risks,\u201d DataTribe noted in its fourth-quarter 2022 Insights.\n\nWhile recognizing the ever-growing importance of cybersecurity and the ever-growing demand to protect against increasingly sophisticated\u2014and numerous\u2014bad actors, dealmakers are likely to be active but cautious in the year to come. \n\nBelow are the deals that CSO has selected as the most significant of the year. (This list is updated periodically as new deals are announced.) If your company has made or has been involved in a cybersecurity acquisition or merger, contact CSO Regional Executive Editor Andrew Flynn at firstname.lastname@example.org to be considered for inclusion in this list.\n\nPalo Alto to buy Talon Cyber Security\n\nNovember 6: Palo Alto Networks has agreed to buy enterprise browser technology startup Talon Cyber Security for an undisclosed amount. Talon\u2019s Enterprise Browser platform, which allows security teams to gain visibility and control over all work-related SaaS and web activity on all devices, including personal and unmanaged endpoints, will be combined with Palo Alto\u2019s Prisma SASE. The combination will enable users to securely access business applications from any device, including mobile and other non-corporate devices while delivering seamless user experiences, the companies said in a press release.\n\nProofpoint signs definitive agreement to acquire Tessian\n\nOctober 30: Cybersecurity and compliance company Proofpoint, has entered into a definitive agreement to acquire Tessian, which offers a Cloud-native, API-enabled inbound and outbound email protection solution. Tessian\u2019s platform uses advanced AI to automatically detect and guard against both accidental data loss and evolving email threats. The acquisition is expected to close in late 2023 to early 2024, subject to closing conditions, including regulatory approval.\n\nSnyk acquires pull request platform Reviewpad\n\nOctober 30: Code vulnerability scanning platform Snyk has acquired Reviewpad, a service that automates pull requests and issues workflows. \u201cWith technological progress depending on the human ability to create and modify software systems, Reviewpad was founded to allow developers to safely contribute to any codebase as fast as possible,\u201d Reviewpad co-founder Marcelo Sousa said in a blog post. \u201cSnyk\u2019s values are aligned with our core values, and together we\u2019ll bring more developer and security teams together so that more of the world\u2019s millions of developers can benefit from DevSecOps collaboration.\u201d\n\nFintech firm Cuentas announces intent to acquire equity stake in security provider WHEN\n\nOctober 16: Cuentas, Inc., which provides financial services to the underbanked, has signed a letter of intent to acquire a 75% equity stake in World Health Energy Holdings (WHEN), a holding company that has developed threat screening technology based on pattern recognition and AI. \u201cWe have been heads down focused on created a state-of-the-art technology platform that defends critical communications and financial infrastructure against attack and compromise,\u201d said Major Gen. (Ret.) Danny Yatom, president of WHEN and former director of Israeli Mossad, in a press release. \u201cThe proposed transaction puts us on the world stage and will enable us to bring our innovations more rapidly to market.\u201d Terms of the acquisition were not disclosed.\n\nNew Zealand's Bastion Security Group acquires Cassini Limited\n\nOctober 12: Cybersecurity consulting firm Bastion Security Group has acquired threat intelligence provider Cassini Limited. Both companies are based in New Zealand. "Cassini is New Zealand's leading expert in the field of cyber threat intelligence and will complement the services of Bastion perfectly. We are delighted to welcome Cassini on board," the firm stated in a LinkedIn post. Terms of the sale were not disclosed. \n\nArctic Wolf to acquire Revelstoke and its SOAR platform\n\nOctober 10: Security operations provider Arctic Wolf has announced its intent to acquire Revelstoke. The company intends to incorporate Revelstoke's SOAR platform into its Security Operations Cloud and Concierge Delivery Model. \u201cRevelstoke is a pioneer in the SOAR industry, and their platform, built upon a unified data layer, is a fundamentally different approach that re-architects security automation from the ground up,\u201d said Nick Schneider, president and CEO, Arctic Wolf, in a press release. \u201cSOAR is fast-becoming a core requirement for an effective security operations program, however, many existing solutions lack the simplicity, interoperability, and scalability to leverage SOAR technologies as a seamless extension of threat detection and response. By combining Arctic Wolf\u2019s comprehensive Security Operations portfolio with Revelstoke\u2019s unique approach to security automation, we believe we will be able to accelerate our innovation cycle and will deliver the most effective threat protection on the market in an efficient and scalable manner.\u201d Terms of the deal were not disclosed.\n\nMDR firm Lumifi acquires Castra Managed Services\n\nOctober 4: Lumifi has extended its managed detection and response (MDR) capabilities with the acquisition of Castra Managed Service, another MDR provider specializing in the Exabeam SIEM platform. \u201cWe\u2019re thrilled to join forces with Castra. This collaboration strengthens our SIEM capabilities, offering our clients more choices and control in designing their security architectures. We remain committed to providing diverse technological options that guarantee unparalleled service quality, and the Castra acquisition exemplifies this commitment,\u201d said David Norlin, CISO of Lumifi, in a press release. Terms of the deal were not disclosed.\n\nKPMG in Canada acquires identity management provider IMagosoft\n\nOctober 3: KPMG in Canada has acquired Calgary-based IMagosoft. The company plans to use IMagosoft's identity management solution to enhance its own identity and access management service offerings. \u201cWith the hybrid workforce being a focused target of cybercriminals, we are seeing an unprecedented adoption of identity solutions to defend against those threats. Organizations are increasingly asking for our support to defend against these attacks, while improving their employee and customer experiences, and reducing adoption friction,\u201d says Thomas Davies, partner, cybersecurity, and KPMG\u2019s national leader, Risk Consulting Managed Services, in a press release. Terms of the deal were not disclosed.\n\nWireless threat monitoring firm LOCH Technologies buys security automation provider Avirtek\n\nOctober 2: LOCH Technologies has completed its acquisition of Avirtek, Inc. The company plans to integrate Avirtek's automated self-management and self-protection capabilities into its LOCH AirShield platform. "Their use of adaptive machine learning algorithms on transactional-based datasets provides a truly unique approach to anomaly detection and is a significant step forward for cybersecurity," said Kurt Grutzmacher, chief scientist at LOCH Technologies, in a press release. "I look forward to integrating their behavior analytics into our platform and increasing our role in the operations and cybersecurity process." Terms of the sale were not disclosed.\n\nCybercrime detection firm Netcraft acquires FraudWatch\n\nSeptember 12: Cybercrime detection, disruption, and takedown company Netcraft has acquired Australian online brand protection provider FraudWatch for an undisclosed amount. FraudWatch provides security services focused on phishing, social media, brand infringement, and fake mobile apps. \u201cWith this acquisition, Netcraft and FraudWatch will deliver high-quality, high-speed cybercrime detection and takedowns with even greater capabilities to new and existing customers,\u201d the companies said in a statement.\n\nSecurityBridge acquires Protect4S\n\nSeptember 12: SecurityBridge, a Dutch cybersecurity solutions provider for SAP customers has acquired Dutch SAP security specialist Protect4S. The combination will provide an improved one-stop-shop software platform aimed at improving SAP customers\u2019 security position, the companies said in a statement. \u201cThe acquisition of the Dutch IT specialist not only expands SecurityBridge\u2019s industry expertise and increases its innovative strength, but also allows SecurityBridge to further build on its industry leadership,\u201d the company said.\n\nCrowdStrike to acquire Bionic\n\nSeptember 19: CrowdStrike has agreed to acquire application security posture management (ASPM) firm Bionic to enhance its cloud-native application protection platform (CNAPP). CrowdStrike said the deal makes it the first cybersecurity company to deliver complete code-to-runtime cloud security from one unified platform. \u201cWe pioneered cybersecurity for the cloud era, and the addition of Bionic further extends our cloud security leadership on our mission of stopping breaches,\u201d Crowdstrike CEO George Kurtz said in a statement announcing the deal. \u201cBionic shares our passion for customer-focused innovation and will make a great addition to the CrowdStrike team.\u201d CrowdStrike plans to offer Bionic ASPM as an independent offering and fully integrated as a capability of Falcon Cloud Security, part of the AI-powered CrowdStrike Falcon platform.\n\nWatchGuard buys CyGlass\n\nSeptember 20: WatchGuard Technologies has acquired cloud and network-centric threat detection and response firm CyGlass Technology Services. CyGlass's cloud-native platform utilizes artificial intelligence and machine learning capabilities to deliver enterprise-class cyber defense across hybrid networks to mid-sized and small organizations at an affordable cost and without hardware. WatchGuard will incorporate the CyGlass technology into its Unified Security Platform architecture, delivering AI-based detection of network anomalies with a future network detection and response (NDR) service.\n\nCisco buys Splunk in $28-billion deal\n\nSeptember 21: Cisco has agreed to buy Splunk for about $28 billion in an all-cash deal that will significantly reinforce the network and cloud giant\u2019s security software portfolio. Splunk\u2019s software platform is known for its wide-reaching ability to search, monitor and analyze data from a variety of systems. Network security teams can use this information to gain better visibility into and gather insights about network traffic, firewalls, intrusion detection systems (IDSes), intrusion prevention systems (IPSes), and security information and event management (SIEM) systems, from on-premise and or its cloud-based package, according to Splunk. Cisco said in a press release that it expects to bring all of those capabilities and more to its security portfolio.\n\nDeloitte Australia buys cyber firm ParaFlare\n\nAugust 2: Financial services firm Deloitte Australia has acquired cybersecurity firm ParaFlare for an undisclosed amount. ParaFlare provides sovereign-managed detection and response (MDR) services. \u201cThe cyber risk landscape is driving exponential growth in demand for security expertise and solutions, and this partnership with ParaFlare will enable us to bring truly world-class, market-leading capability to service our clients\u2019 cyber security needs,\u201d Deloitte Australia CEO Adam Powick said in a press release.\n\nArmor acquires Quantum Security\n\nAugust 3: Cloud and hybrid cloud security solutions provider Armor has acquired Singapore-based cybersecurity firm Quantum Security to enhance its capabilities in cloud security and IT risk. Quantum specializes in cloud automation and services. \u201cQuantum Security's expertise in cloud automation and services will complement Armor's existing capabilities and help the company deliver more comprehensive solutions to its customers,\u201d Armor said in a statement.\n\nProtect AI acquires huntr and launches bug bounty program\n\nAugust 8: Artificial intelligence and machine learning security company Protect AI has bought AI\/ML bug bounty platform huntr.dev and launched the huntr AI\/ML bug bounty platform. \u201cOriginally founded in 2020 by 418Sec Founder, Adam Nygate, huntr.dev quickly rose to become the world's 5th largest certified naming authority (CNA) for common vulnerabilities and exposures (CVEs) in 2022,\u201d the companies said in a statement. \u201cWith huntr, we will foster an active community of security researchers, to meet the demand for discovering vulnerabilities within these models and systems.\u201d Huntr offers an AI\/ML bug-hunting environment with intuitive navigation, targeted bug bounties with streamlined reporting, monthly contests, collaboration tools, vulnerability reviews, and bounties available to the hacking community. The first contest is focused on Hugging Face Transformers offering a $50,000 reward.\n\nRubrik acquires DSPM provider Laminar\n\nAugust 8: Zero-trust data security firm Rubrik has signed an agreement to acquire data security posture management (DSPM) platform Laminar. \u201cThe combination will create the industry\u2019s first complete cyber resilience offering of its kind by bringing together cyber recovery and cyber posture across enterprise, cloud, and SaaS,\u201d the companies said in a statement. Laminar combines cloud-native design with deep security expertise to provide visibility and control for organizations that need to protect sensitive data. Rubrik said the acquisition will further enable its customers to be more proactive against cyberattacks and provide businesses with cyber resilience.\n\nCheck Point to acquire Perimeter 81\n\nAugust 10: Global cybersecurity firm Check Point Software has agreed to buy security service edge (SSE) company Perimeter 81 for about $490 million. Perimeter, launched in 2018, combines cloud and on-device protection within SSE, offering zero-trust access and full mesh connectivity between users, branches, and applications. \u201cWith the advent of hybrid work and the rise of cloud transformation, the demand for security services that expand beyond the network perimeter is increasing,\u201d Check Point CEO Gil Shwed said in a statement. \u201cBy leveraging Perimeter 81\u00b4s capabilities and integrating them into the Check Point Infinity platform we continue with our vision to deliver the best security through comprehensive, collaborative and consolidated solutions.\u201d The deal is expected to close in the third quarter of 2023.\n\nZurich acquires cyber counterintelligence firm SpearTip\n\nAugust 14: Zurich Holding Company of America, a subsidiary of Zurich Insurance Group, has acquired cyber counterintelligence firm SpearTip to expand cyber risk mitigation services available from Zurich Resilience Solutions, which employs a team of cyber risk management specialists who provide objective assessments of businesses' cybersecurity posture and unique threat environment, with consultative support to strengthen overall cyber resilience. \u201cThe combination of [SpearTip\u2019s] technical capabilities with Zurich's service excellence extends the capabilities of the Zurich Resilience Solutions' Cyber Services Team to bring a full suite offering to our customers,\u201d David Shluger, vice president of Cyber Risk Services for Zurich Resilience Solutions said in a press release.\n\nZyston buys Complyify\n\nAugust 14: Dallas-based managed security services provider (MSSP) Zyston has acquired Complyify, a software development company specializing in artificial intelligence technologies. Complyify\u2019s proprietary AI technology will be integrated into Zyston\u2019s CyberCAST offering immediately, with the first upgraded services expected to be available to clients in the third quarter of 2023.\n\nTPG agrees to buy Forcepoint G2CI business\n\nJuly 10: Global security firm Forcepoint has agreed to sell its global governments and critical Infrastructure (G2CI) business to asset management firm TPG for an undisclosed amount. The move separates Forcepoint\u2019s commercial and G2CI businesses and establishes G2CI as an independent entity. Forcepoint was acquired by investment firm Francisco Partners from Raytheon in 2021. The deal will allow Forcepoint G2CI \u201cto operate with greater flexibility and focus, positioning the new company to grow its platform as a comprehensive, next-generation cybersecurity provider for defense, intelligence, and critical national infrastructure organizations across the globe,\u201d the companies said in a statement.\n\nSafe Security acquires RiskLens\n\nJuly 12: AI-Driven Cyber Risk Management company Safe Security acquired RiskLens, developer of the Factor Analysis of Information Risk (FAIR) cyber risk quantification standard. The purchase will combine FAIR with Safe Security\u2019s AI-powered automated cyber risk management platform, SAFE. \u201cThis acquisition accelerates our mission of becoming the de-facto industry standard to measure, manage, and transfer cyber risk,\u201d Safe Security CEO and co-founder Saket Modi said in a press release.\n\nCisco announces intent to acquire Oort\n\nJuly 13: Tech giant Cisco announced on its blog the intent to acquire identity threat detection and response (ITDR) technology developer Oort to enhance the Cisco Security Cloud user context telemetry. Oort\u2019s API-driven, cloud-native, and agentless platform, is intended to eliminate identity visibility gaps across disparate data sources, show misconfigurations, check for security vulnerabilities, and offer predictive identity analytics to proactively stop attacks. \u201cIn addition to strengthening Cisco\u2019s native telemetry, Oort\u2019s integrations with other third-party vendors \u2013 including Google, Microsoft, Okta, and Auth0 \u2013 supports our commitment to increase interoperability and deliver consistent outcomes regardless of vendor or technology,\u201d Raj Chopra, chief product officer of Cisco\u2019s Security Business Group, said in a company blog.\n\nCISO Global buys SB Cyber Technologies\n\nJuly 19: Managed cybersecurity and compliance provider CISO Global has acquired SB Cyber Technologies, which specializes in identifying, enhancing, and applying emerging government and military grade capabilities to commercial technical security challenges. SC Cyber, which was founded by former members of the US intelligence and special operations communities, has become a wholly owned subsidiary of CISO Global. CISO Global will integrate SB Cyber\u2019s CHECKLIGHT endpoint detection and response (EDR) technology into its suite of products. \u201cCHECKLIGHT expands our proprietary capabilities and value proposition to the market, allowing us to deliver the full spectrum of services required today to be truly cyber resilient,\u201d CISO Global founder and CEO David Jemmett said in a statement.\n\nGraylog acquires Resurface.io\u2019s API security platform\n\nJune 19: Graylog, a global provider of SIEM and log management solutions, has acquired Resurface.io\u2019s data-driven API security platform for an undisclosed amount. \u201cThe acquisition broadens Graylog\u2019s security portfolio and delivers to enterprise customers a comprehensive API security threat detection and incident response platform to combat the evolving challenges in the API security landscape,\u201d Graylog said in a statement. The product will be renamed Graylog API Security and \u201cwill enable Graylog to reach a broader audience, accelerate product advancements, and provide customers unparalleled API ecosystem protection.\u201d\n\nCoro acquires network security startup Privatise\n\nJuly 26: Mid-market cybersecurity platform Coro has acquired in-office and remote work security provider Privatise for an undisclosed amount. The acquisition will allow Coro to offer a single source of comprehensive security and protection through a unified, cloud-based platform, the company said in a press release. \u201cSince its founding, Coro has focused on delivering a comprehensive, yet affordable and easy to use cybersecurity solution for mid-market companies,\u201d said Coro CEO Guy Moskowitz. \u201cBy integrating Privatise\u2019s SASE capabilities into our platform, we offer the industry\u2019s first mid-market solution to deliver cloud-native, seamless, and secure access to applications and resources regardless of location or device.\u201d\n\nThales agrees to buy Tesserent\n\nJune 13: Defense technology and security provider Thales has agreed to buy Australian cybersecurity firm Tesserent in a deal that values to the firm at about $111 million. Paris-based Thales said the deal will enable it to \u201caccelerate its cybersecurity development roadmap and expand its footprint in Australia and New Zealand.\u201d Tesserent will continue to operate under its current name, but its branding will include the \u201cCyber Solutions by Thales\u201d tagline. \u201cWith the acquisition of Tesserent and its highly skilled team of cyber experts, and combined with our own system engineering experts, Thales Australia will establish an Australian\/New Zealand leader in Cyber Defence able to best protect the country and its national infrastructure from cyber threats,\u201d Thales Australia CEO Jeff Connolly said in a release.\n\nInformatica announces intent to acquire Privitar\n\nInformatica has agreed to buy Privitar with the intention of integrating its access controls and remediation for data privacy and security into Informatica's AI-powered Intelligent Data Management Cloud platform. Privitar is a \u201cUK-based data management access and privacy software provider that powers organizations to democratize the ethical and safe use of data across enterprises,\u201d Informatica said in a statement. \u201cData governance and responsible use of data is a growing priority for large businesses, but too often requires trading off agility and self-service,\u201d said Informatica CEO Amit Walia.\n\nDataprise acquires Texas-based managed service provider RevelSec\n\nJune 21: Dataprise, a provider of managed IT, cybersecurity, and cloud solutions, has acquired RevelSec for an undisclosed amount. RevelSec, a security-first managed service provider headquartered in Texas, will \u201cfurther expand Dataprise\u2019s national footprint and add high-value vertical expertise while providing RevelSec clients access to Dataprise\u2019s broad portfolio of powerhouse services,\u201d the companies said in a statement. RevelSec serves 200 clients across industries including financial services, healthcare, and oil and gas.\n\nDaisy Corporate Services completes acquisition of ECSC Group\n\nJune 22: Daisy Corporate Services has completed its acquisition of breach prevention, detection and response support company ECSC Group. In a statement on its website, Daisy said the purchase \u201cprovides highly complementary services\u201d to its \u201ccurrent operational resilience offerings, therefore providing an enhanced customer proposition.\u201d Founded in 2000, ECSC provides expert security breach prevention, detection and response support to almost 425 customers across all sectors and including a range of corporate and blue-chip organizations. \u201dWe firmly believe that together we will become the UK\u2019s leading cyber security organization,\u201d said ECSC CEO Matthew Briggs.\n\nSocure buys Berbix for $70 million\n\nJune 27: Digital identity verification solutions provider Socure has acquired San Francisco-based startup Berbix for about $70 million. Berbix, founded in 2018 by former members of the Airbnb Trust and Safety Team, has developed a high-accuracy document verification solution with a forensics engine able to detect spoofed IDs, including AI-generated fakes.\n\nMozilla buys fake-busting software firm Fakespot\n\nMay 2: Not-for-profit tech foundation Mozilla has bought fake-busting software developer Fakespot. Fakespot uses artificial intelligence (AI) and machine learning (ML) systems to detect patterns and similarities between reviews to flag those that are most likely to be deceptive. The system helps sort real reviews from fake ones, to support trust and confidence among those making online purchases. Mozilla said it will continue to invest in enhancing Fakespot for current users but plans to develop future Fakespot integrations that will be unique to Mozilla\u2019s Firefox browser.\n\nPrivate equity firm acquires Absolute software for $657 million\n\nMay 11: Crosspoint Capital Partners has agreed to buy self-healing, intelligent security solutions provider Absolute Software for US$657 million excluding debt in a deal that will take the NASDAQ-traded company private. \u201cWe are impressed with how Absolute has built upon its asset visibility and control heritage and expanded into solutions that provide endpoint resilience and the reliable access needed in today\u2019s hybrid work environments,\u201d Crosspoint managing partner Greg Clark said in a statement. Absolute provides self-healing, intelligent security solutions that offer a permanent digital connection that intelligently and dynamically applies visibility, control, and self-healing capabilities to endpoints, applications, and network connections.\n\nExiger acquires software supply chain and SBOM management platform Ion Channel\n\nMay 16: Security software as a service provider Exiger has bought software supply chain risk management platform Ion Channel. The acquisition will expand Exiger\u2019s depth of analysis in vendor and open-source software cyber risk, CEO Brandon Daniels said in a statement. \u201cFrom entities to software to raw materials, Exiger\u2019s technology now covers all potential product risk so our customers can regain control of their supply chains.\u201d Ion Channel has developed a proprietary risk model that analyzes 1.5 trillion events in open-source and proprietary software components daily and tracks more than 100 leading risk indicators to detect security and operational risk months in advance of known vulnerabilities. Ion Channel\u2019s C-SCRM solution will be incorporated into Exiger\u2019s FedRAMP SaaS platform.\n\nIBM acquires Polar Security\n\nMay 16: Tech giant IBM has acquired data security posture management (DPSM) provider Polar Security to bolster its cloud security offerings. Polar Security\u2019s platform helps to manage \u201cshadow data\u201d \u2014 sensitive data not being tracked or managed by a company. DSPM reveals where sensitive data is stored, who has access to it, how it\u2019s used, and identifies vulnerabilities with the underlying security posture, including policies, configurations, or data usage. Polar Security\u2019s DSPM technology will be integrated into IBM\u2019s Guardium family of data security products.\n\nOnfido buys digital identity-sharing technology developer Airside Mobile\n\nMay 22: Automated identity verification company Onfido has acquired Airside Mobile. Airside is noted as among the first to bring user-controlled digital identity to the travel industry. The company\u2019s privacy-first identity management technology will be combined with Onfido\u2019s verification platform to allow \u201cverify once, use anywhere\u201d use where customers can manage their own digital identity stored on a smartphone.\n\nCisco plans to buy Armorblox to help create \u201can AI-first Security Cloud.\u201d\n\nMay 31: Cisco has agreed to purchase email security platform Armorblox for an undisclosed amount. Cisco security Chief Product Officer Raj Chopra said Armorblox\u2019s use of predictive and generative AI \u201cwill change the way our customers understand and interact with their security control points.\u201d In a blog announcing the pending acquisition, Chopra said Armorblox\u2019s techniques may also be applied to attack prediction, rapid threat detection, and efficient policy enforcement.\n\nOpSec Security agrees to buy Zacco\n\nApril 4: Brand integrity firm OpSec Security has agreed to buy intellectual property Danish intellectual property management and protection company Zacco, the two companies said in a statement. Zacco combines traditional legal expertise with digital brand management and security. The addition of Zacco will \u201ccombine the respective strengths of the two businesses to help customers maximize the value of their IP portfolios, take advantage of new opportunities, and counter vulnerabilities and threats these may bring,\u201d OpSec said.\n\nTrustCloud and Branddocs merge\n\nApril 11: In a reverse takeover, secure digital transaction and video verification services Branddocs acquired secure digital transaction choreographing platform TrustCloud for an undisclosed amount. The new company will operate as TrustCloud, combining Branddocs\u2019 client base and in-house network of fraud detection experts, AI\/ML technologies, multi-orchestration capabilities, and the TrustCloud modular platform to deliver globally compliant, frictionless, and vendor-agnostic services.\n\nColumbus acquires ICY Security\n\nApril 11: Columbus has acquired ICY Security in an expansion aimed at meeting customer demand for cyber security services. Denmark-based ICY Security is among the Nordic countries' largest consultancies and implementation companies in the area of identity and access management (IAM). \u201cThe acquisition of ICY Security is an important investment in extending Columbus\u2019 offerings following the increased need for cybersecurity services from our customers,\u201d Columbus CEO and President S\u00f8ren Krogh Knudsen said in a statement.\n\nAkamai acquires Neosec\n\nApril 19: Content delivery network and cloud security services provider Akamai Technologies has agreed to buy privately held API detection and response platform Neosec. The acquisition will extend Akamai\u2019s visibility into the rapidly growing API threat landscape, the company said in a statement. \u201cThe combination is designed to make it easy for customers to secure their APIs by helping them discover all of their APIs, assess their risk, and respond to vulnerabilities and attacks.\u201d\n\nCisco agrees to buy Lightspin Technologies\n\nMarch 29: Software and service giant Cisco has agreed to buy privately held cloud security software Lightspin Technologies for an undisclosed amount. Lightspin offers end-to-end cloud security posture management (CSPM) across cloud-native resources. The company will join Cisco\u2019s emerging technologies and incubation (ET&I) business.\n\nMastercard acquires Baffin Bay\n\nMarch 20: Mastercard has bought Swedish cybersecurity firm Baffin Bay to increase its cloud-based protections. The company will integrate Baffin Bay\u2019s cloud-based solution that uses AI technology to automatically filter and counteract malicious internet traffic into its current offerings. \u201cThe addition of Baffin Bay Network\u2019s instantaneous, predictive and cloud-based AI technology to our existing analytical capabilities will deliver a leading, singular cyber solution,\u201d Mastercard said in a statement.\n\nHPE acquires Axis Security\n\nMarch 2: Hewlett Packard Enterprise (HPE) agreed to buy cloud security services provider Axis Security, its third acquisition since January, to deliver a unified secure access service edge (SASE) offering. The acquisition is aimed at incorporating the Axis security service edge (SSE) platform into HPE\u2019s edge-to-cloud network security capabilities to deliver integrated networking and security solutions as-a-service. HPE plans to integrate Atmos, an SSE offering by Axis Security, into Aruba, its platform for edge-to-cloud networking with AI-based network automation. \u201cThe convergence of Aruba and Axis Security solutions will transform edge-to-cloud connectivity with a comprehensive SASE solution that provides enterprises with the highest levels of security for both IoT devices and all users\u2019 access across geographically distributed locations,\u201d Phil Mottram, executive vice president and general manager, HPE Aruba Networking said in a statement.\n\nOnline auction giant eBay Acquires 3PM Shield\n\nFebruary 13: eBay acquired 3PM Shield, a provider of monitoring solutions designed to prevent the sale of counterfeit items, unsafe products and illegal goods. The purchase will help provide sellers and buyers with a safe and trusted platform and enhances eBay's ability to address suspicious or harmful seller behavior and potentially problematic items. \u201c3PM Shield has been a valued and effective external partner in helping eBay tackle these challenges and we look forward to unlocking additional capabilities as we bring their technologies in-house,\u201d eBay Chief Risk Officer Zhi Zhou said in a statement.\n\nAccenture buys Brazil-based Morphus\n\nFebruary 13: New York-based Accenture has acquired privately held cyber defense, risk management, and cyber threat intelligence services provider Morphus for an undisclosed amount. Brazil-based Morphus provides red and blue team services; governance, risk, and compliance services; enterprise risk management; cyber strategy; threat intelligence; and managed security services. \u201cThe acquisition brings more than 230 highly skilled professionals, making Accenture one of the largest cybersecurity professional services providers in Brazil,\u201d Accenture Security global leader Paolo Dal Cin said in a statement. The acquisition launches Accenture\u2019s cyber industry practice in Latin America.\n\nVista Equity Partners completes acquisition of KnowBe4\n\nFebruary 1: Investment firm Vista Equity Partners completed its acquisition of security awareness training and simulated phishing platform KnowBe4 for $24.90 per share in cash, valuing the company at about $4.4 billion. \u201cThe human element remains one of the most important yet neglected aspects of cybersecurity,\u201d Michael Fosnaugh, co-head of Vista\u2019s Flagship Fund and senior managing director, said in a press release. \u201cThe opportunity to scale a business that is truly mission-critical to enterprises around the world is core to Vista\u2019s investment approach and value creation efforts.\u201d Vista focuses exclusively on acquiring enterprise software, data, and technology-enabled businesses.\n\nRadiant Logic signs definitive agreement to acquire Brainwave GRC\n\nFebruary 1: California-based Radiant Logic entered into a definitive agreement to acquire French identity governance and analytics company Brainwave to accelerate the companies\u2019 shared vision of an identity data fabric using data science to ensure the right information is in place to make the right policy decisions. \u201cDemand is increasing for cybersecurity, governance, and compliance solutions that help companies address the continually evolving security threats, especially as regulatory environments and fines become more prevalent,\u201d said Joe Sander, CEO of Radiant Logic, in a press release. The companies said the acquisition will strengthen their market positions as identity, analytics, and intelligence experts and provide a zero-trust and identity-first security foundation to deliver enhanced data security, reduced audit and compliance costs, and improved understanding and visibility of malicious activity.\n\nVeridos becomes majority shareholder in NetSeT\n\nJanuary 30: Berlin-based Veridos has acquired a majority stake in NetSeT Global Solutions, a move the company says will strengthen its position as a full-service provider of integrated identity solutions. NetSeT, based in Serbia, develops information systems for the management of citizen data and information security. In 2017, Veridos acquired a minority stake in NetSeT, which will now be integrated into the Veridos Group. \u201cWith this acquisition, we are expanding our position as a provider of holistic identity solutions to cover the entire value chain: from citizen registration to the creation and personalization of ID documents and the management of citizen data to document verification,\u201d Veridos CEO Marc-Julian Siewert said in a press release. The move comes after 20 years of collaboration between Veridos and NetSeT. In joint projects, the companies have co-operated in providing the ID system for northern Macedonia, ePassport systems for Bangladesh, Venezuela, and the United Arab Emirates, and a driver's licence system for Uganda.\n\nSimeio acquires identity and access management firm PathMaker\n\nJanuary 10: Specialized identity and access management (IAM) services provider Simeio acquired Texas-based identity governance firm PathMaker Group in a move that will enhance Simeio\u2019s consulting services and SailPoint implementation capabilities, the company said. "This acquisition solidifies our commitment to integrate future-ready technologies to protect and secure identities. \u201cSimeio CEO Chris Schueler said in a press release. \u201cI am very confident in the unmatched identity security services that our clients can take advantage of as a result of this acquisition." Simeio operates a portfolio of end-to-end services in advisory, building, and managing identity security solutions. PathMaker\u2019s IAM MAP assessment process and methodology will be incorporated into Simeio\u2019s proprietary identity orchestration platform Simeio IO, allowing customers to continuously measure and assess the maturity of their identity programs. Simeio\u2019s managed identity security services delivered through Simeio IO will also be accessible to PathMaker clients.