Forty-five cybersecurity merger and acquisition (M&A) offers had been introduced in October 2025.
Out of the 45 offers, roughly 1 / 4 had publicly reported monetary phrases. A majority of offers had been smaller, extremely strategic acquisitions specializing in buying high-value tech or expertise.
Personal fairness corporations had been lively in each large-scale buyouts and consolidation performs, exhibiting confidence in GRC and different mature platforms.
In actual fact, GRC firms had been concerned in over a dozen offers. The information reveals an effort to consolidate GRC platforms, notably by way of the combination of area of interest experience equivalent to third-party danger administration and AI governance.
Half a dozen offers concerned id and authentication corporations, with a number of main firms trying so as to add next-generation options equivalent to passwordless authentication and id risk detection and response into their core id platforms.
Whereas a majority of the goal firms are primarily based in the USA, a major variety of offers contain Australian firms, with a number of transactions pointing to consolidation inside the native market.
Listed below are a number of the most essential cybersecurity M&A offers introduced in October 2025:
Dataminr acquires ThreatConnectAdvertisement. Scroll to proceed studying.
Actual-time occasion and danger detection options supplier Dataminr is buying risk intelligence agency ThreatConnect for $290 million in money and fairness. The objective is to mix Dataminr’s information indicators platform with ThreatConnect’s deep inner information capabilities to create agentic AI-powered intelligence that’s tailor-made to every buyer’s wants.
Imprivata acquires Verosint
Id options supplier Imprivata has purchased id risk detection and response firm Verosint. Imprivata mentioned the acquisition will allow it so as to add AI-powered danger intelligence to its platform. By integrating Verosint’s danger engine, Imprivata can constantly detect and reply to identity-based threats.
Francisco Companions to take Jamf non-public after acquisition
Personal fairness agency Francisco Companions has entered right into a definitive settlement to amass Apple machine administration and safety agency Jamf in a $2.2 billion deal. The transaction is anticipated to shut within the first quarter of 2026, when Jamf will develop into a privately held firm.
JumpCloud acquires Breez
Id, entry and machine administration firm JumpCloud has acquired Breez, an id risk detection, investigation, and response (ITDR) platform. The acquisition accelerates JumpCloud’s safety roadmap, bringing ITDR instruments and experience immediately into its platform. With Breez’s know-how, JumpCloud expands its skill to detect, examine, and reply to id threats.
LevelBlue acquires Cybereason
LevelBlue, one of many world’s largest managed safety service suppliers, introduced a definitive settlement to amass prolonged detection and response (XDR) supplier Cybereason. Following the acquisition, Cybereason’s XDR know-how and digital forensics and incident response (DFIR) capabilities will likely be built-in into LevelBlue’s portfolio of managed safety companies.
NSO to be acquired by US buyers
The controversial spyware and adware maker NSO Group has been acquired by a gaggle of American buyers led by Hollywood producer Robert Simonds, transferring controlling possession of the agency out of Israel. The deal has been reportedly valued at a number of tens of thousands and thousands of {dollars}.
Pentera acquires DevOcean
Automated safety validation and penetration testing agency Pentera has acquired DevOvean, which makes a speciality of remediation administration, for $30 million. The mixing of DevOcean capabilities will allow Pentera to scale back remediation overload, enrich findings with organizational context, pace up remediation, and implement SLA-driven remediation.
Ping Id to amass Keyless
Ping Id has signed an settlement to amass Keyless, a London-based agency specializing in privacy-preserving biometric authentication. The deal will carry Keyless’ Zero-Data Biometrics know-how to the Ping Id Platform. The deal allows Ping to assist enterprises confirm customers securely, with out ever storing or sharing delicate biometric information.
RecordPoint acquires Redactive
RecordPoint, a knowledge administration and AI governance agency, has bolstered its capabilities by way of the acquisition of Redactive, a Melbourne-based startup that helps firms make AI adoption safe, compliant, and scalable. The objective of the deal is to speed up the event of RecordPoint’s AI governance platform with new risk administration capabilities. Redactive’s know-how enhances RecordPoint’s capability to deal with rising AI cyber threats focusing on extremely delicate information.
Riveron acquires Eden Knowledge
Enterprise advisory agency Riveron introduced its acquisition of Eden Knowledge, an Austin-based advisory agency identified for its deep cybersecurity and GRC experience. The deal expands Riveron’s Threat Advisory choices, combining monetary controls, operational danger, and rising know-how experience underneath one roof.
Searchlight Cyber acquires Intangic
Assault floor administration and risk intelligence agency Searchlight Cyber has acquired danger administration firm Intangic. The transfer enhances Searchlight’s skill to assist organizations measure, monitor and mitigate cyber danger throughout their exterior environments.
Twilio to amass Stytch
Twilio has entered into an settlement to amass Stytch, an id platform for AI brokers. Stytch’s consultants and know-how will assist Twilio construct an clever id layer throughout its platform. That is pushed by the necessity to authenticate each human customers and the rising AI Brokers that act on their behalf.
Vectra AI acquires Netography
Cloud community safety agency Vectra AI introduced the acquisition of community observability firm Netography. As a part of the deal, Netography Fusion will be part of the Vectra AI portfolio as Vectra Fusion, delivering agentless, cloud-native observability to allow proactive, preemptive cyberattack protection for hybrid and multi-cloud environments. This marks the second firm led by Netography CEO Martin Roesch to be acquired.
Veeam Software program to amass Securiti AI
Knowledge portability and resilience options supplier Veeam Software program has introduced plans to amass information safety posture administration (DSPM) firm Securiti AI for $1.725 billion in money and inventory. The acquisition will unite their capabilities and allow Veeam to eradicate the problem of managing fragmented information.
Associated: Cybersecurity M&A Roundup: 40 Offers Introduced in September 2025
Associated: Cybersecurity M&A Roundup: 27 Offers Introduced in August 2025
