💰 Security, Funded #123 - Signing Off '23 with a Bang: Cyber, and AI, and IoT, Oh My!

Hey there,

Happy Monday, and I hope you had a great weekend. In this week’s issue, we’ve got:

• 🤝 From ASPM to IAM

• 🔜 A 2023 sign-off & survey

• 🔥 SentinelOne's moves and ZeroFox's mixed results

• 🤘 Greatest hits, the importance of SSO, and SIEM futures

And that’s a wrap for 2023 for this newsletter!

I got to cap off this last week by doing my very first sponsorship of a security conference here in London for BSides London

Just a reminder that this is the last newsletter issue you’ll get from me in 2023. I’ll catch you all next year on Tuesday, January 2, 2024, since that Monday is New Year’s Day.

Don’t you worry, though, I’ll still be capturing all the happenings and crunching the numbers through the end of this year so you don’t miss a beat when we all come back in 2024.

Before you sign off for the year, would you mind doing me a huge favor? I’m always trying to improve this newsletter for you, and I want to make it the most valuable resource that I can. Would you please fill out this quick and anonymous end-of-year survey to help me out?

Have an upcoming deal to share? Looking for funding? Looking for companies to fund? Drop me a message at [email protected].

Onward to this week's issue.

Last week’s vibe check:
Which cybersecurity threat do you believe is most under-recognized in our industry?

In last week’s poll, most people saw IoT Device security and Deepfakes as the most under-recognized threats in our industry. My favorite comment from you all last week was

“Quantum is still a decent ways out, and deepfakes are pretty situational, while IoT risks are here now”

Just take a look at what’s happening around the world at our water and power facilities.

📸 YTD Snapshot

A rolling 12-week chart to compare funding and acquisitions each week between 2022 and 2023.

We’ve got a continuation of typical seasonality in the funding industry as the year winds down. Only a few weeks left for those last-minute tax write-off investments!

This late the in year bumped happened last year with a few more acquisitions than normal screeching across the finish line. At this point, we are just ~5% shy of matching 2022’s M&A activity. 🍿 

💰 Funding Summary

• 12 companies raised $155.4M across 11 unique product categories

• 7 companies were acquired or had a merger event for $1.8M across 5 unique product categories

🧩 Funding By Product Category

• $40.0M for Application Security Posture Management (ASPM) across 1 deal

• $30.0M for Data Privacy across 1 deal

• $22.0M for Identity and Access Management (IAM) across 1 deal

• $16.2M for Connected and Autonomous Vehicle Security (CAVS) across 1 deal

• $16.0M for Professional Services across 1 deal

• $12.8M for Data Protection across 2 deals

• $7.2M for Data Security Posture Management (DSPM) across 1 deal

• $5.0M for Fraud and Financial Crime Protection across 1 deal

• $3.2M for Cybersecurity Program Management across 1 deal

• $3.1M for Software Supply Chain Security across 1 deal

• An undisclosed amount for Security Awareness across 1 deal

🏢 Funding By Company

• ArmorCode, a United States-based application security posture management (ASPM) platform, raised a $40.0M Series B from Highland Capital Partners. (more)

• Mine, an Israel-based data privacy and consent management platform, raised a $30.0M Series B from Battery Ventures and PayPal Ventures. (more)

• Opal, a United States-based identity and access governance platform, raised a $22.0M Series B from Battery Ventures. (more)

• ProvenRun, a France-based connected vehicle and smart device security platform, raised a $16.2M Series A from Tikehau Capital. (more)

• TAO Digital Solutions, a United States-based professional services firm focused on strategy and cybersecurity consulting, raised a $16.0M Venture Round from Anicut Capital. (more)

• CryptoNext Security, a France-based post-quantum cryptography data protection platform, raised an $11.9M Series A from AXA Venture Partners and Quantonation. (more)

• Teleskope, a United States-based data security posture management (DSPM), raised a $7.2M Seed round. (more)

• ThreatMark, a Czech Republic-based fraud and financial crime protection platform, raised a $5.0M Venture Round from ORBIT Capital. (more)

• Enveedo, a United States-based cybersecurity program management platform, raised a $3.2M Seed from Silverton Partners. (more)

• Xeol, a United States-based software supply chain security platform, raised a $3.1M Pre-Seed round. (more)

• Klarytee, a United Kingdom-based document data protection and digital rights management (DRM) platform, raised a $883.8K Pre-Seed from Concept Ventures. (more)

• Cyber Guru, an Italy-based security awareness and training platform, raised an undisclosed Debt Financing round from Riverside Acceleration Capital.

🌎 Funding By Country

• $91.4M for United States across 6 deals

• $30.0M for Israel across 1 deal

• $28.1M for France across 2 deals

• $5.0M for Czech Republic across 1 deal

• $883.8K for United Kingdom across 1 deal

• An undisclosed amount for Italy across 1 deal

🤝 Mergers & Acquisitions

• Semnet, a Singapore-based managed security services provider (MSSP), was acquired by GSTechnologies for $1.8M. (more)

• Bluecube, a United Kingdom-based managed security services provider (MSSP), was acquired by Ecko for an undisclosed amount. (more)

• Connexta, a Germany-based professional services firm focused on IT and cybersecurity consulting, was acquired by Fremman Capital for an undisclosed amount. (more)

• Infosec Learning, a United States-based cybersecurity training and education platform, was acquired by ACI Learning for an undisclosed amount. (more)

• Mainline Information Systems, a United States-based managed security services provider (MSSP), was acquired by H.I.G. Capital for an undisclosed amount. (more)

• Rafft, an Israel-based platform for orchestrating and securing cloud development environments, was acquired by Wiz for an undisclosed amount. (more)

• WireWheel, a United States-based data loss prevention (DLP) platform, was acquired by Osano for an undisclosed amount. (more)

📚 Great Reads

• SSOTax - A community-driven, open-source project that aims to highlight the importance of Single Sign-On (SSO) as a fundamental and necessary security feature for companies that SSO should not be treated as a premium feature.

• *How to Reduce Incoming Security Questionnaires and Accelerate the Sales Cycle - Turn the needless friction of security questionnaires on its head and ensure time does not kill your deals.

• The SIEM Alternatives Fallacies - This post examines the common logical fallacies presented by providers marketing their products as alternatives to Security Information and Event Management (SIEM) systems.

• Return on Security Greatest Hits - Some light holiday downtime reading - A curated list of the most popular blog posts at Return on Security about cybersecurity investing, starting a business, career advancement, and more.

_{*Sponsored content and/or affiliate link.}

🧪 Labs

Peak Gen AI usage is for trolling, and I had way too much fun making these.

Have an upcoming deal to share? Looking for funding? Looking for companies to fund? Drop me a message at [email protected].