This website uses cookies

Read our Privacy policy and Terms of use for more information.

This week's issue is backed by Crogl, Drata, and Delinea.

Hope you had a great weekend, and a Happy Almost Q3 to all those who celebrate!

Today’s issue is a special one for me, because today marks the fifth year of writing the newsletter! 🤯

Somehow, I'm caught off guard every year when this milestone comes around. When I stop and think about it, I’m often left in awe with how long this newsletter idea has lasted, how many opportunities it has opened for me personally and professionally, and how many of you have been on the journey with me.

Return on Security has been far more rewarding and far more work than I ever imagined it would be when I started out, but I wouldn’t have it any other way.

All in all, I feel incredibly fortunate to get to write this newsletter every week, and I couldn’t be more grateful to you for taking the time to read it and/or share kind words.

The encouragement always means a lot and motivates me to keep going, and here’s to another 5 years! 🚀

PARTNER

Investigate. Hunt. Document. Every Alert. That's an AI SOC.

Your tools, your workflows, your data. Nothing leaves your environment.

Crogl handles the investigation. The analyst makes the call. Every action is visible, modifiable, and documented. Analysts review, override, and learn from every step Crogl takes.

Download today, connect your data sources, and run your first investigation in the same hour. Deploy on-premises, in your private cloud, or fully air-gapped. Crogl runs inside your infrastructure. Get started today.

Download today. See it in your environment.

Partner With Us

Table of Contents

😎 Vibe Check

Click the options below to vote on whether you are a practitioner, founder, or investor. Feel free to leave a comment, and I'll feature the best takes in next week’s write-up!

Last issue’s vibe check:
Accenture just bought three cyber companies in one shot. Who makes the next billion-dollar cyber acquisition before year-end?
🟨🟨🟨⬜️⬜️⬜️ A hyperscaler (Google, Microsoft)
🟩🟩🟩🟩🟩🟩 A cyber incumbent (Palo Alto, CRWD)
🟨🟨🟨⬜️⬜️⬜️ A data/AI platform (Databricks, Snowflake)
⬜️⬜️⬜️⬜️⬜️⬜️ Other - drop the name in the comments

In last week’s vibe check, most people voted for a public cyber incumbent to make the next billion-dollar acquisition in the market. That stands to reason, given that most of the big, publicly disclosed transactions do come from the large cyber companies. There was a dead-even split for the hyperscalers and the data/AI platforms, which also makes sense.

Safe to say, there’s a lot of ground to be wound up, and it is very much a buyer’s market right now.

Some of the top comments from last week’s vibe check:

💬 “Anthropic”

💬 “Makes sense for data platforms to move into security since they already have the center of gravity for both AI and cyber.”

💬 “Agentic AI security, identity security, and data security remain gaps where acquisitions can accelerate roadmap execution.”

🔭 Zooming Out

Important stories hidden in the numbers

  • Buying Governance - A networking incumbent acquiring SurePath AI (AI risk and governance) is the tell of the week. When a category that barely existed 18 months ago is already consolidating, you know it’s a big deal. With platforms buying their way in because customers are asking "how do I control the agents?" faster than incumbents can ship a roadmap. We saw the same playbook play out in the Data Security Posture Management (DSPM) category. When acquisition beats build this early, the category is real, and the clock is short.

💰 Market Summary

Private Markets

  • 7 companies from 3 countries raised $93.2M across 7 unique categories

  • Average disclosed deal size was $23.3M (median: $24.1M)

  • 86% of funded companies were product companies

  • 3 companies from 3 countries were acquired across 3 unique categories

  • 67% of acquired companies were product companies

  • 1 company announced layoffs

Public Markets

  • 1 public company raised $5.5M via Post-IPO Equity

  • No public cyber companies had an earnings report last week

📸 YoY Snapshot

Rolling 13-week charts that compare funding and acquisitions week over week, year over year, comparing 2025 to 2026

$7.0B across 154 deals over the past quarter, down 22% from a year ago.

74 acquisitions over the past quarter, down 24% from a year ago.

PARTNER

How Leading CISOs Are Building Continuous Compliance

Discover how automation transforms compliance into a continuous advantage.

Compliance isn’t a once-a-year task anymore.

As regulatory scrutiny intensifies and cyber threats evolve, compliance leaders are rethinking how they manage risk and maintain assurance across frameworks.

The CISO Guide to Continuous Compliance explores a modern, automation-driven approach that enables organizations to stay audit-ready year-round.

Learn More

🪦 Stop, Drop, Shut’em Down…

  • None 😮‍💨

Layoffs

  • Snyk, a United States-based application security platform, laid off an undisclosed number of employees as part of a restructuring and AI investments. (more)

🧩 Funding By Product Category

  • $30.0M for Application Security across 1 deal

  • $28.7M for Identity Verification across 2 deals

  • $25.0M for Security Operations across 1 deal

  • $15.0M for Cyber Insurance across 1 deal

  • An undisclosed amount for Data Privacy across 1 deal

  • An undisclosed amount for Managed Security Services Provider (MSSP) across 1 deal

  • An undisclosed amount for Security Incident Management across 1 deal

🏢 Funding By Company

» Interact with all the data in real-time on The Signal dashboard or via the MCP.

Product Companies:

  • Runlayer, a United States-based model Context Protocol (MCP) application security platform, raised a $30.0M Series A from Felicis. (more)

  • Nebulock, a United States-based agentic threat hunting and security operations platform, raised a $25.0M Series A from FirstMark. (more)

  • IDfy, an India-based customer identity verification platform, raised a $23.2M Funding Round. (more)

  • Mitigata, an India-based cyber risk insurance platform, raised $15.0M in Series B funding from Bessemer Venture Partners. (more)

  • Trust Stamp, a United States-based privacy-first AI identity verification and biometric authentication platform, raised a $5.5M Post-IPO Equity. (more)

  • Akrites, a United States-based coordinated vulnerability disclosure initiative for open-source software, raised an undisclosed Seed from Alpha-Omega. (more)

  • Syntonym, a Turkey-based platform that lets you anonymize visual data in a GDPR-compliant way, raised an undisclosed seed round from AI Startup Factory. (more)

Service Companies:

SEC filings may reflect partial or interim fundraising and can understate the final round numbers.

🌎 Funding By Country

  • $60.5M for the United States across 5 deals

  • $38.2M for India across 2 deals

  • An undisclosed amount for Turkey across 1 deal

🤝 Mergers & Acquisitions

Product Companies:

  • Identiq, an Israel-based private network for identity validation, was acquired by Incode Technologies for an undisclosed amount. Identiq has not previously disclosed funding. (more)

  • SurePath AI, a United States-based AI risk and governance platform, was acquired by F5 for an undisclosed amount. SurePath AI had previously raised $5.2M in funding. (more)

Service Companies:

  • 3Point, a Belgium-based cybersecurity and IT consulting for defense and public safety, was acquired by Cegeka for an undisclosed amount. 3Point has not previously disclosed funding. (more)

🤘 IPO-h Yeah

  • None

📚 Great Reads

*Sponsored

🧪 Labs

Big if true

🫡 Signing Off

Have questions, comments, or feedback? Just reply directly, I’d love to hear from you.

If you find this newsletter useful and know others who would, I'd really appreciate it if you'd forward it to them!

Mike P

P.S. Feel free to connect with me on LinkedIn.

Reply

Avatar

or to participate

Keep Reading