Highlights:
- Tenable plans to integrate Vulcan’s technology to strengthen its own vulnerability detection and remediation capabilities.
- Tenable’s platform features a component known as the Exposure Graph, which contains more than one trillion cybersecurity-related data points.
Tenable Holdings Inc. acquired Vulcan Cyber Ltd., a startup company that helps businesses resolve susceptibilities in their infrastructure.
The acquisition is valued at USD 150 million, with Tenable funding the deal through USD 147 million in cash and USD three million in restricted stock units, which will vest over time. This represents a significant return for Vulcan’s investors, who previously provided the company with USD 55 million in funding before the acquisition.
Tenable, a publicly traded company on Nasdaq, offers a platform designed to help enterprises identify cybersecurity risks within their systems. Its technology detects software vulnerabilities, user accounts with excessive access permissions, and employee devices that may have been overlooked by the IT department. According to Tenable, more than 44,000 organizations worldwide utilize its software.
Vulcan, headquartered in Israel, operates in the same market segment. Its flagship platform integrates with a company’s existing cybersecurity tools to collect data on vulnerabilities, such as unpatched software. The platform then organizes and refines this information into a more actionable format for IT teams.
In large enterprise networks, multiple cybersecurity tools often detect the same vulnerabilities, generating separate alerts for each instance. Vulcan streamlines this process by eliminating duplicate entries, making vulnerability analysis more efficient. Additionally, it consolidates related data points that pertain to the same cybersecurity issue, reducing the need for administrators to manually correlate information from different logs.
After structuring cybersecurity data, Vulcan enhances it with supplementary insights. The platform incorporates threat intelligence on active hacking campaigns, along with data from MITRE ATT and CK, a widely recognized cybersecurity knowledge base. This resource assists IT teams in understanding the tactics cybercriminals might use to exploit vulnerabilities within their company’s network.
Vulcan also provides remediation recommendations for the security issues it identifies. If a vulnerable application is detected, the platform locates the appropriate patch for administrators to apply. In cases where no patch is available, Vulcan suggests alternative mitigation strategies, such as isolating the affected workload from public internet access.
Tenable plans to integrate Vulcan’s technology to strengthen its own vulnerability detection and remediation capabilities.
Vulcan’s platform includes connectors capable of gathering technical data from over 100 cybersecurity tools. According to Tenable, these connectors will improve its ability to analyze and process vulnerability data. Tenable’s platform features a component known as the Exposure Graph, which contains more than one trillion cybersecurity-related data points.
The company also anticipates that the acquisition will strengthen its artificial intelligence capabilities. Cyberattacks often exploit multiple vulnerabilities within a targeted organization’s network to gain access and steal data. Tenable’s platform features an AI-powered tool that identifies connections between these vulnerabilities, illustrates how they could be leveraged together in an attack, and recommends solutions to mitigate the risk.
Tenable’s Co-chief Executive Officer and Chief Operating Officer Mark Thurmond said, “By uniting disparate tools and data under one roof, we’re providing security teams with a full-spectrum view of their attack surface, enabling them to prioritize what matters most and act decisively to address vulnerabilities.”
Tenable aims to finalize the acquisition by the end of March.