At a glance.
- RSAC 2020 is underway.
- European Commission recommends staff use Signal.
- US Justice Department wants legislation to gain access to encrypted data.
- SECURITI.ai wins the RSAC Innovation Sandbox.
Mergers and acquisitions.
McAfee is acquiring Catonsville, Maryland-based browser isolation provider Light Point Security for an undisclosed amount. McAfee says it "plans to integrate Light Point Security’s browser isolation technology into McAfee Secure Web Gateway, complementing its existing comprehensive inbound and outbound protection for all web and cloud traffic." The company will also "integrate browser isolation into the newly released MVISION UCE solution, which includes McAfee Secure Web Gateway, McAfee Data Loss Prevention and MVISION Cloud (CASB), thus enabling a complete and simplified implementation of the SASE Architecture."
Emirati telecommunications provider Etisalat has acquired Help AG, a cybersecurity company that was founded in Germany in 1995 and moved its headquarters to Dubai in 2018, according to Gulf Business. Etisalat's group chief business officer Salvador Anglada said that "this acquisition fits perfectly into our strategy of being a key enabler of secure, seamless and effective digital transformation for our customers. We have full trust and confidence that Help AG’s leadership will effectively add value to our security portfolio and amplify the cyber security capabilities of our clients."
Investments and exits.
Atlanta, Georgia-based privacy management software provider OneTrust has raised $210 million in a Series B round led by Coatue and Insight Partners. The company received $200 million in Series A funding in July 2019, and the new funding brings its valuation to $2.7 billion. OneTrust's CEO Kabir Barday said the company "plans to use the combined funding to continue to invest in meeting the widespread demand for our technology platform. We will scale our services, support, and partner ecosystem globally and add new capabilities to the platform through both organic and inorganic innovation."
San Jose, California-based network monitoring company cPacket Networks received $15 million in funding from Morgan Stanley Expansion Capital. cPacket's CEO Brendan O'Flaherty said the funding will allow them to "aggressively expand our technology leadership and drive customer adoption."
Baltimore, Maryland-based social media security company ZeroFOX has secured $74 million in an oversubscribed Series D round led by Intel Capital, with participation from existing investors NEA, Highland Capital Partners, Redline Capital Management, Hercules Capital, and Core Capital. The Maryland Daily Record reports that ZeroFOX is now considering an IPO. The company plans to double its workforce from 250 to 500 employees, according to South Baltimore.
Washington-based Linux security company Polyverse has raised $8 million in a funding round led by its existing investors along with Soliton Systems. The company says the funding "will be used to accelerate investment in expanding polymorphic technologies and adding new geographies and new capabilities such as polymorphic script engines and polymorphic build farms, for DevSecOps."
Santa Clara, California-based cloud security provider Netskope has raised $340 million in a funding round led by Sequoia Capital Global Equities, with participation from new investors Canada Pension Plan Investment Board and PSP Investments and existing investors Lightspeed Venture Partners, Accel, Base Partners, ICONIQ Capital, Sapphire Ventures, Geodesic Capital, and Social Capital. Netskope says the investment brings its total valuation to nearly $3 billion.
Palo Alto, California-based code security startup BluBracket emerged from stealth with a $6.5 million seed investment led by Unusual Ventures, with participation from Point72 Ventures, SignalFire, and Firebolt Ventures. BluBracket was a finalist in the RSAC Innovation Sandbox.
CrowdStrike co-founder and Chief Technology Officer Dmitri Alperovitch is stepping down to launch a nonprofit, nonpartisan policy accelerator, CyberScoop reports. CrowdStrike has promoted its vice president of technology strategy, Michael Sentonas, to take Alperovitch's place as CTO.
The CyberWire announced on Friday that Rick Howard, former Chief Security Officer at Palo Alto Networks, has joined the CyberWire's executive team as Chief Security Officer and Chief Analyst. Howard will work on the CyberWire's editorial team and help shape the upcoming CyberWire Pro subscription products.
Arete Incident Response has hired Shelly Ma as Director of Digital Forensics & Incident Response, Jaycee Roth as Associate Director of Digital Forensics and Incident Response, and Dan Lownsbrough as Technical Deputy and Senior Forensic Investigator.
ThreatConnect has hired Miles R. Tappin as Vice President of EMEA, Steve Mariani as Vice President of Revenue Operations, Daniel Moser as Chief Financial Officer, and Phillip Higgs as Vice President of Federal Sales, Help Net Security reports.
Praetorian has added Cam McMartin to its board of directors. McMartin previously served as Chief Financial Officer and Chief Operating Officer at SailPoint before joining SailPoint's board of directors.
Haystax has added Brett Wilson as General Manager and David Sanders as Director of Insider Threat Operations. Wilson previously served as Chief Operating Officer of enSilo, while Sanders "designed and managed the insider threat program at Harris Corporation, now L3Harris Technologies."
Security companies in the news.
RSAC 2020 is currently underway in San Francisco, despite several big-name vendor cancellations. Both Verizon and AT&T pulled out of the conference last week over concerns surrounding the coronavirus. Twelve other companies, including IBM, cancelled their attendance for the same reason. Seven of the companies that cancelled are from the US, one is from Canada, and six are from China. Three Chinese companies are still attending the conference, but RSA says their booths will be staffed with employees from the US. San Francisco's mayor released a letter late last week assuring RSAC participants that the risk posed by the virus in San Francisco was low and urged them to "set an example to prevent fear, rumors, and misinformation from guiding our actions." The mayor on Tuesday declared a state of emergency to prepare for the virus, noting that while there are still no confirmed cases in the city, "[g]iven the global patterns that are being seen, there is a growing likelihood of cases in San Francisco."
Politico reports that the European Commission has recommended that its employees use Signal for end-to-end encryption when they communicate with people outside of the institution.
The US Justice Department seems to have given up on getting tech companies to voluntarily come up with ways to give law enforcement access to encrypted data, according to the Washington Post. Assistant Attorney General of National Security John Demers told reporters that no progress has been made in the area, and Justice will now seek legislation to force companies to comply.
And security innovation.
San Jose, California-based privacy compliance automation company SECURITI.ai was named the winner of the RSAC Innovation Sandbox, Infosecurity Magazine reports. The company's CEO Rehan Jalil stated, "Privacy compliance and operations are only getting more complex for businesses around the world, and we’re humbled that the judges recognized our vision for AI-powered PrivacyOps and data protection."
The other nine finalists were San Francisco-based security management and compliance company AppOmni, Palo Alto-based code security startup BluBracket, San Francisco-based employee risk management firm Elevate Security, Pennsylvania-based cybersecurity automation company ForAllSecure, Maryland-based phishing prevention company Inky, Newport Beach, California-based cloud identity protection provider Obsidian Security, San Francisco-based application security management company Sqreen, Fremont, California-based formjacking prevention provider Tala Security, and Israeli code security company Vulcan Cyber.