Highlights

  • Randori works toward analyzing enterprise networks and devices to find gaps and weaknesses so that security teams can tackle the issues before any cyber attack.
  • IBM continues to strengthen its hybrid cloud and AI skills and capabilities, including cybersecurity.

At its recently held RSAC 2022 conference, IBM announced its plans to acquire Randori, a leading cybersecurity, and Attack Surface Management (ASM) provider. The acquisition will help IBM streamline its threat detection and response solutions portfolio. The deal will also give its Hybrid Cloud strategy a push. The financial details of the deal are yet to be disclosed.

Randori, a big name in ASM and offensive security, was founded in 2018 and is currently led by co-founder and CEO Brian Hazzard. The firm terms brand itself as a leader in ASM and offensive security, acting as a “trusted adversary” for its clients. The Boston-based startup is known to have raised almost USD 30 million across two funding rounds.

Cybersecurity has gone beyond just signature-based virus detection and endpoint defence in recent times. The number of data breaches and security incidents impacting various businesses has seen a spike. A mix of defensive and offensive expertise is needed to overcome today’s threats. Thanks to the pandemic, the number of potential exposure points in hybrid cloud operating environments has been growing due to a shift to remote and hybrid working.

Data from ESG Security Hygiene & Posture Management Survey, 2021, showed that 67% of the organizations saw expansion in their external attack surface in the past two years due to a rise in cloud usage, Internet of Things (IoT) devices, and third-party services. The same data showed that 69% of the companies were compromised because of poorly managed internet-facing assets. This has given rise to the need for both defensive and offensive expertise.

Randori works toward analyzing enterprise networks and devices to find gaps and weaknesses so that security teams can tackle the issues before any cyber attack. Its unique ASM solution considers the logic of an adversary based on real-world attacks. It has led to the development of a cloud-native solution that prioritizes vulnerabilities better and reduces noise by focusing on the attack surface of the customer.

IBM’s latest purchase of Randori is in addition to its acquisition of ReaQta, an endpoint security company, in November 2021. ReaQta “automatically identifies and manages threats” using Artificial Intelligence (AI), a technology in which IBM has a keen interest. This is yet another sign showing IBM’s shift towards cloud software and AI-powered cybersecurity services.

IBM’’s new company, ReaQTA, has paved the way for the launch of QRadar XDR, an Extended Detection and Response (XDR) suite. Once the current acquisition closes, Randori’s ASM software will also be integrated with the XDR capabilities of its IBM Security QRadar suite. This will aid security teams leverage real-time attack surface visibility.

This will be IBM’s fourth acquisition this year to be closed in the next few months, depending on the regulatory approval. The company continues to strengthen its hybrid cloud and AI skills and capabilities, including cybersecurity.

Expert’s Take

Randori’s CEO, Brian Hazzard, commented, “We started Randori to ensure every organization has access to the attacker’s perspective. To stay ahead of today’s threats, you need to know what’s exposed and how attackers view your environment – that’s exactly what Randori provides. By joining forces with IBM, we can greatly accelerate this vision and strategy – leveraging IBM’s deep expertise in AI, threat intelligence, offensive security, and global reach. Together, we can arm the industry with the attacker’s perspective – helping to give every organization the visibility and insight needed to get in front of the next wave of attacks.”

Kevin Skapinetz, VP of Strategy and Business Development at IBM Security said, “If we’re going to turn the tables on attackers, we need to start acting like them with continuous automation of their latest techniques. Randori brings us that ability while further enhancing the offensive security skills we bring to the table with our elite team of hackers at X-Force Red.”

He added, “Randori brings a hacker-led approach to ASM that is truly unique and helps companies view their exposures just like an attacker would. Their prioritization factors in not only the risk level of the vulnerability but also the attractiveness of an asset to potential attackers, based on real work attacks and popular targets and techniques that today’s attackers are using.”