IBM plans to acquire Randori, an attack surface management (ASM) and offensive cyber security provider based in Boston, it revealed yesterday.
Randori helps customers to identify external facing assets that are visible to attackers, and prioritise which poses the greatest risk. IBM hopes the acquisition will advance its hybrid cloud and AI skills and capabilities. This will be its fourth acquisition of 2022 and it revealed it has acquired over 20 companies since Arvind Krishna became CEO in April 2020.
The new acquisition provides software to help security teams discover gaps, assess risks, and improve their security over time. Its attack surface management product maps a customer’s attack surface to help identify shadow IT risks and potential entry points for ransomware.
IBM aims to integrate Randori’s software with the extended detection and response (XDR) capabilities of IBM Security QRadar. Security teams will be able to use Randori’s real-time attack surface visibility for intelligent alert triage, threat hunting, and incident response. IBM hopes this can help eliminate the need for customers to manually monitor new critical applications and respond quickly when new issues or emerging threats arise on their perimeter.
RELATED RESOURCE
"Our clients today are faced with managing a complex technology landscape of accelerating cyber attacks targeted at applications running across a variety of hybrid cloud environments – from public clouds, private clouds and on-premises," said Mary O'Brien, general manager of IBM Security. "In this environment, it is essential for organisations to arm themselves with the attacker's perspective in order to help find their most critical blind spots and focus their efforts on areas that will minimise business disruption and damages to revenue and reputation."
Randori is also able to provide businesses with a product that combines attack surface management with continuous automated red teaming (CART) to stress test defence and incident response teams. IBM plans to use this to complement its X-Force Red hacker lead offensive security services.
The Boston-based company is backed by Accomplice, .406 Ventures, Harmony Partners and Legion Capital. The financial terms of the deal weren’t disclosed, and the transaction is expected to close in the next few months.
-
Cleo attack victim list grows as Hertz confirms customer data stolenNews Hertz has confirmed it suffered a data breach as a result of the Cleo zero-day vulnerability in late 2024, with the car rental giant warning that customer data was stolen.
-
Lateral moves in tech: Why leaders should support employee mobilityIn-depth Encouraging staff to switch roles can have long-term benefits for skills in the tech sector
-
IBM completes HashiCorp acquisition after regulatory approvalNews IBM has completed its $6.4 billion acquisition of cloud automation and security firm HashiCorp,
-
IBM eyes Oracle expertise gains with latest acquisition
News The deal aims to help IBM address the complexities of public sector cloud transformation
-
UK regulator to investigate IBM takeover of HashiCorp
News The CMA is concerned that the merger could affect competition in the cloud services market
-
Channel Focus: All you need to know about IBM's partner programHow Big Blue seeks to go deep, tackling enterprise complexity: A brief guide to the role of partners in IBM's plan to accelerate software and consulting sales.
-
Put AI to work for talent managementWhitepaper Change the way we define jobs and the skills required to support business and employee needs
-
Let’s rethink the recruiting processwhitepaper If you designed your recruiting process for a new company, what would you automate to attract and hire the best talent?
-
The power of AI & automation: Productivity and agilitywhitepaper To perform at its peak, automation requires incessant data from across the organization and partner ecosystem.
-
Everything you need to know about IBM’s HashiCorp acquisitionNews IBM’s acquisition of HashiCorp represents a major signal of intent for the tech giant and its hybrid cloud and AI ambitions
