At a glance.
- Onfido in discussions with the US government over COVID-19 "immunity passports."
- CrowdStrike investigates New York state government hack.
- Zoom zero-days up for sale, but demand is still in question.
- Chicago and Equifax reach $1.5 million settlement.
- Facebook sues cloaking software company.
Mergers and acquisitions.
CollabNet VersionOne, XebiaLabs, and Arxan Technologies are merging to form a new company, Digital.ai. The company is backed by TPG Capital, and will bring together "leaders in business agility, software delivery, and application security into one integrated, intelligent value stream platform."
Investcorp Technology Partners, the private equity arm of Bahrain-headquartered multinational bank Investcorp, has acquired German antivirus and threat intelligence firm Avira for $180 million. Gilbert Kamieniecky, Managing Director and Head of Investcorp's Technology Private Equity business, stated that "Investcorp is looking forward to supporting Avira’s targeted growth trajectory and expansion plans."
San Jose, California-based cloud security company Zscaler will acquire Seattle-based cloud misconfiguration detection startup Cloudneeti. The terms of the deal were not disclosed. The acquisition will allow Zscaler to "provide its customers industry-leading data protection coverage in the Zscaler Cloud Security Platform."
Investments and exits.
London-based biometric identity verification company Onfido raised $100 million in a funding round led by TPG Growth, TechCrunch reports. The company will use the funding to expand its business, work on building an online identity verification platform to replace credit bureaus and online logins, and look at ways to securely virtualize processes such as voting due to the COVID-19 pandemic. Business Insider reports that Onfido is already in discussions with the US government to link people's identification documents to their medical records in order to grant "immunity passports" to those who have recovered from the disease.
San Francisco-based bug bounty company Bugcrowd has raised $30 million in a Series D round led by Rally Ventures. The funding "will help Bugcrowd accelerate the expansion of its industry-leading crowdsourced security platform."
Santa Clara, California-based network traffic analysis company Awake Security has raised $36 million in a Series C round led by Evolution Equity Partners, with participation from Energize Ventures and Liberty Global Ventures, as well as existing investors Bain Capital Ventures and Greylock Partners. Awake says it will use the funding " to propel expansion in areas including R&D, sales and marketing to meet the growing demand for the company’s advanced network traffic analysis platform."
New York City-based passwordless identity management company Beyond Identity publicly launched on Tuesday and raised $30 million in a Series A round led by Koch Disruptive Technologies, LLC and New Enterprise Associates. The company was founded by Jim Clark and Tom Jermoluk and aims to replace passwords with X.509-based certificates.
San Francisco-based code-level error monitoring company Airbrake has raised $11 million in a funding round led by Elsewhere Partners. Shelley Perry, Executive Chairman of Airbrake, stated that the investment "allows Airbrake to focus on value-led growth, which includes increasing customer feedback, building community, and investing in partnerships within the CI/CD ecosystem."
Santa Barbara, California-based network traffic analysis provider MixMode has secured $4 million in a Series A round led by Entrada Ventures, with participation from Keshif Ventures and Blu Venture Investors. VentureBeat says MixMode will use the funding to improve its platform, hire more employees, and increase its marketing efforts.
BigID has hired Roger Hale as its Chief Security Officer. Hale was previously CISO-in-Residence at YL Ventures.
AttackIQ has hired as Chief Marketing Officer and Jonathan Reiber as Senior Director of Cybersecurity Strategy and Policy. O'Brien previously served as Senior Vice President of Corporate Marketing for Nutanix, while Reiber was previously Chief Strategy Officer for Cyber Policy and Speechwriter in the Office of the Secretary of Defense under President Obama.
GroupSense has hired Adam Bregenzer as chief technology officer and Jeffrey Duran as chief marketing officer. Bregenzer was most recently a senior engineering manager at Venmo, while Duran was previously vice president of marketing for Nisos.
Cofense has promoted its Chief of Staff, Brandi Moore, to Chief Operating Officer. Cofense also hired Mark Small as SVP of Worldwide Sales and Carolyn Merritt as VP of Customer Experience. Smalls previously led Proofpoint's Digital Risk Worldwide Sales and Technical teams, while Merritt has held "executive leadership roles at various technology companies including Dataprise, Metalogix Software and Cision."
Parsons Corporation has hired Dana Turturro as its senior vice president of talent acquisition. Turturro has previously "held talent acquisition and mobility roles with CACI International, CSRA and Peraton."
Security companies in the news.
CrowdStrike was hired by New York's state government to investigate an intrusion into the state's computer network, the Wall Street Journal reports. The Journal says CrowdStrike "identified more than 25 servers and encrypted networking appliances that were compromised in the January hack."
Motherboard reports that Zoom zero-day vulnerabilities are selling for between $5,000 to $30,000—low compared to powerful zero-days in browsers or mobile operating systems. Motherboard quotes a defense contractor as saying his customers still aren't sure whether they can benefit from Zoom exploits.
The city of Chicago has reached a $1.5 million settlement with Equifax over the credit reporting agency's 2017 data breach, Law Street reports.
Facebook is suing the founder of a company called "LeadCloak" for selling software to assist in ad-spoofing, Business Insider reports. Facebook alleges that the company was helping scammers place fraudulent ads on Facebook and Instagram.