The intricate infrastructure of a modern data center, showcasing server racks and cabling.
Cybersecurity M&A January 2026: A Roundup of 34 Deals
Thirty-four cybersecurity-related merger and acquisition (M&A) deals were announced in January 2026. This reflects an active M&A landscape, as reported by SecurityWeek. Several significant companies were involved in these Cybersecurity M&A January 2026 transactions.
What Happened
In January 2026, a total of 34 cybersecurity M&A deals were announced, according to reports by SecurityWeek. These cybersecurity acquisition deals highlight ongoing consolidation within the security sector. The month saw involvement from various firms, from established industry leaders to specialized solution providers.
Most Important Cybersecurity M&A Deals in January 2026
- CrowdStrike plans to acquire SGNL, a US-based continuous identity and dynamic authorization solutions provider.
- CrowdStrike plans to acquire Seraphic, an Israel-based browser runtime security provider.
- Delinea is acquiring StrongDM, a just-in-time runtime authorization and universal access management provider.
- Diligent acquired 3rdRisk, a Netherlands-based third-party risk management platform.
- Infoblox plans to acquire Axur, a Brazil-based external threat protection provider.
- JumpCloud acquired MacSolution, a Brazil-based MSP.
- LevelBlue is acquiring Alert Logic managed services business (MDR, XDR, WAF) from Fortra.
- OneSpan announced plans to acquire Build38, a Munich-based specialist in SDK-based mobile app protection and RASP.
- OVHcloud acquired Seald, a Paris-based specialist in end-to-end encryption and zero-knowledge technologies.
- Radware acquired Pynt, an Israel-based API security testing startup.
- ThreatModeler acquired IriusRisk, a Spain-based threat modeling platform.
Details From Sources
As reported by SecurityWeek, several notable cybersecurity acquisition deals took place in January 2026. Specific details have emerged regarding some of these M&A in security sector activities.
Key Acquisitions and Their Purposes
- CrowdStrike and SGNL: CrowdStrike plans to acquire SGNL for $740 million. SGNL is a US-based provider of continuous identity and dynamic authorization solutions.
- CrowdStrike and Seraphic: CrowdStrike plans to acquire Seraphic for roughly $420 million. Seraphic, an Israel-based browser runtime security provider, aims to add in-session browser protection.
- Delinea and StrongDM: Delinea is acquiring StrongDM, a provider of just-in-time runtime authorization and universal access management. This acquisition aims to combine PAM capabilities with continuous, developer-first access.
- Diligent and 3rdRisk: Diligent acquired 3rdRisk, a Netherlands-based third-party risk management platform. This move aims to enhance Diligent’s risk visibility through automated vendor due diligence, monitoring, and AI-powered assessments.
- Infoblox and Axur: Infoblox plans to acquire Axur, a Brazil-based external threat protection provider. The goal is to enhance the detection and takedown of brand abuse, phishing, fraud, and credential exposure.
- JumpCloud and MacSolution: JumpCloud acquired MacSolution, a Brazil-based MSP. This acquisition aims to establish a strategic hub in São Paulo.
- LevelBlue and Alert Logic: LevelBlue is acquiring Alert Logic’s managed services business (MDR, XDR, WAF) from Fortra. This is intended to strengthen LevelBlue’s global MDR position.
- OneSpan and Build38: OneSpan announced plans to acquire Build38, a Munich-based specialist in SDK-based mobile app protection and RASP. This aims to expand OneSpan’s App Shielding capabilities.
- OVHcloud and Seald: OVHcloud acquired Seald, a Paris-based specialist in end-to-end encryption and zero-knowledge technologies. The aim is to integrate encryption solutions natively.
- Radware and Pynt: Radware acquired Pynt, an Israel-based API security testing startup. This acquisition aims to strengthen Radware’s API security portfolio with automated pre-production testing.
- ThreatModeler and IriusRisk: ThreatModeler acquired IriusRisk, a Spain-based threat modeling platform, for reportedly $100 million. This deal aims to unite platforms and expand reach.
Other Cybersecurity Acquisition Deals in January 2026
SecurityWeek also reported on 23 additional cybersecurity acquisition deals. These transactions further underscore the active Tech mergers Q1 2026 period.
- 11:11 Systems-Ntirety
- Aurex-Alpha 2
- Axiom GRC-AssurancePoint
- CyberMaxx-Corvid Cyberdefense
- Gryphon Investors-Fortreum
- Horizon Capital-Threatscap
- Inherent-Inovacom
- Integrity360-Adventus360
- IonQ-Skyloom
- LatticeFlow AI-AI Sonar
- New Charter Technologies-NetSource One
- NuView-Beyond Secure
- Parsons-Altamira Technologies Corporation
- Satin Creditcare-QTrino Labs
- SGS-Panacea Infosec
- Sole Source Capital-Brite
- TechnoMile-SIMS Software
- Tetra Tech-Halvik Corp
- Thinkst Canary-DeceptIQ
- Usercentrics-MCP Manager
- Vocodia-Privacy Pal
- Westcon-Comstor-REAL Security
- Wolters Kluwer-StandardFusion
Why This Matters
The strategic motivations behind these security company acquisitions are varied, focusing on enhancing capabilities and market reach. For instance, Delinea’s acquisition of StrongDM aims to combine privileged access management (PAM) with continuous, developer-first access solutions. This integration seeks to streamline security operations.
Infoblox’s acquisition of Axur is another example. It aims to enhance external threat protection, including the detection and takedown of brand abuse, phishing, fraud, and credential exposure. These moves reflect a broader industry trend toward comprehensive security solutions.
Background Context
The cybersecurity sector continues to experience significant M&A activity. SecurityWeek cataloged over 420 M&A deals throughout 2025, indicating a consistent trend of consolidation. This active period follows previous monthly roundups, offering a broader view of market dynamics.
For example, SecurityWeek reported 30 cybersecurity acquisition deals in November 2025. Another 30 deals were announced in December 2025. These cybersecurity funding reports underscore the ongoing interest and investment in security firms.
Related Data or Statistics
In January 2026, 34 cybersecurity M&A deals were announced, marking a robust start to the year. This figure contributes to the broader trend observed in the sector. SecurityWeek cataloged more than 420 M&A deals in 2025, demonstrating sustained market activity.
Several acquisitions also featured publicly disclosed values. CrowdStrike’s acquisition of SGNL was valued at $740 million. Its acquisition of Seraphic was approximately $420 million. ThreatModeler’s acquisition of IriusRisk was reportedly $100 million.
Conclusion
January 2026 demonstrated robust activity in Cybersecurity M&A January 2026. A total of 34 deals were announced, as reported by SecurityWeek, involving various key players and targets. This period highlights the dynamic nature of the security sector’s consolidation, with companies aiming to enhance capabilities and expand market presence. The consistent pace of these cybersecurity acquisition deals signals ongoing evolution in the industry.
Subscribe to the SecurityWeek Email Briefing
Stay updated on the latest cybersecurity news, threats, and expert insights. Subscribe to the SecurityWeek Email Briefing for timely information.
FAQ
- Q1: How many cybersecurity M&A deals were announced in January 2026?
- A1: Thirty-four cybersecurity-related merger and acquisition deals were announced in January 2026.
- Q2: Which major cybersecurity firms were involved in significant acquisitions during this period?
- A2: Significant acquirers included CrowdStrike, Delinea, Diligent, Infoblox, JumpCloud, LevelBlue, OneSpan, OVHcloud, Radware, and ThreatModeler.
- Q3: What were some of the key targets of these acquisitions?
- A3: Notable targets included SGNL, Seraphic, StrongDM, 3rdRisk, Axur, MacSolution, Alert Logic’s managed services business, Build38, Seald, Pynt, and IriusRisk.
- Q4: Were any acquisition amounts publicly disclosed?
- A4: Yes, CrowdStrike’s acquisition of SGNL was valued at $740 million, Seraphic at approximately $420 million, and ThreatModeler’s acquisition of IriusRisk was reportedly $100 million.
- Q5: How does the number of January 2026 deals compare to previous periods?
- A5: SecurityWeek cataloged over 420 M&A deals in 2025. In comparison, 30 deals were announced in November 2025 and 30 in December 2025.
