2022-06-06 | NYSE: IBM | Press release

Addition of Randori further simplifies threat detection and response, building on recent acquisition of ReaQta and launch of QRadar XDR

Adds automation and skills to IBM X-Force’s elite offensive cybersecurity team while bringing the attackers’ perspective to the security operations center

SAN FRANCISCO and ARMONK, NY, June 6, 2022 /PRNewswire/ — IBM (NYSE: IBM) today announced at RSAC 2022 that it intends to acquire Randori, a leading attack surface management (ASM) and offensive cybersecurity provider based in the Boston Region. Randori helps clients continuously identify external assets, on-premises or in the cloud, that are visible to attackers – and prioritize exposures that pose the greatest risk. Today’s news advances IBM’s hybrid cloud strategy and strengthens its portfolio of AI-powered cybersecurity products and services.

Investigations of recent data breaches have shown that despite increased investment, organizations continue to struggle to manage their attack surface. In fact, 67% of organizations have seen their external attack surface increase over the past two years due to the increasing use of cloud, third-party services, the Internet of Things, and cyber-physical systems.1 And 69% were compromised through unknown, unmanaged, or mismanaged Internet resources in the past year.1

“Our customers today face the challenge of managing a complex technology landscape of accelerating targeted cyberattacks on applications running in a variety of hybrid cloud environments – public clouds, private clouds and on-premises,” said declared Mary O’Brien, Managing Director, IBM Security. “In this environment, it’s critical for organizations to arm themselves with an attacker’s perspective to help find their most critical blind spots and focus their efforts on areas that will minimize business disruption and disruption. damage to revenue and reputation.”

Randori is IBM’s fourth acquisition of 2022 as the company continues to build its hybrid cloud and AI skills and capabilities, including cybersecurity. IBM has acquired more than 20 companies since Arvind Krishna became CEO in April 2020.

Assuming the role of attackers

Randori is a hacker-led company with software to help security teams discover gaps, assess risk, and improve their security posture over time by delivering an authentic attack experience at scale. Designed to help security teams focus on previously unknown exposure points, Randori’s unique attack surface management solution takes into account an adversary’s logic based on real attacks – and is the only one to prioritize based on the level of risk as well as the attractiveness of an asset to potential attackers using their proprietary rating system.

Their unique approach led to the development of a cloud-native solution that provides better vulnerability prioritization and reduces noise by focusing on customers’ unique attack surface. By simply entering an email domain, Randori will begin to map a customer’s attack surface, helping to identify phantom IT risks and potential entry points for ransomware. Based at Waltham, MAwith offices at Denver, CO, Randori is backed by Accomplice, .406 Ventures, Harmony Partners and Legion Capital. Financial terms were not disclosed. The transaction is expected to close in the coming months, subject to customary closing conditions and any required regulatory review.

“We launched Randori to ensure that every organization has access to the attacker’s point of view,” said Brian Hazzard, co-founder and CEO of Randori. “To stay ahead of today’s threats, you need to know what’s exposed and how attackers see your environment – that’s exactly what Randori provides. By joining forces with IBM, we can dramatically accelerate this vision and strategy – leveraging IBM’s deep expertise in artificial intelligence, threat intelligence, offensive security and global reach. attacker – helping to give every organization the visibility and information needed to deal with the next wave of attacks.

Upon closing of the acquisition, IBM plans to integrate Randori’s attack surface management software with IBM Security QRadar’s extended detection and response (XDR) capabilities. By integrating Randori insights into QRadar XDR, security teams will be able to leverage real-time visibility of the attack surface for intelligent alert triage, threat hunting, and incident response. This can help customers eliminate the need to manually monitor new critical applications and respond quickly when new issues or emerging threats arise at their perimeter.

Randori also provides enterprises with a solution that uniquely combines attack surface management with continuous automated red teaming (CART) to test defenses and incident response teams. At closing, IBM will rely on Randori to complement X-Force Red’s elite offensive hacker security services while further enriching the detection and response capabilities of QRadar XDR. This will enable more global customers to benefit from a leading attack experience that helps uncover where organizations are most vulnerable. Randori’s information will also be leveraged by IBM’s Managed Security Services to help improve threat detection for thousands of customers.

For more information on Randori and IBM, please visit this IBM Security Intelligence blog.

About Randori

Randori is your trusted opponent. Recognized as a leader in offensive security, Randori combines Attack Surface Management (ASM) and Continuous Automated Red Boring (CART) into a single unified platform to deliver a continuous, proactive and responsive offensive security experience. authentic. Trusted by Meijer, Greenhill Inc, FirstBank, NOV, Lionbridge and many others, Randori helps organizations stay ahead of attackers by continuously discovering what’s exposed and validating risks as they arise. occur. Discover your true attack surface today at www.Randori.com

About IBM Security

IBM Security offers one of the most advanced and integrated portfolios of enterprise security products and services. The wallet, backed by world-renowned IBM Security X-Force® research, enables organizations to effectively manage risk and defend against emerging threats. IBM operates one of the world’s largest security research, development and delivery organizations, monitors more than 150 billion security events per day in more than 130 countries and has been granted more than 10,000 security patents in the world. For more information, visit www.ibm.com/security, follow @IBMSecurity on Twitter or visit the IBM Security Intelligence blog.

Media Contact:

Michael Rowinsky


[email protected]

1 ESG: Safety Hygiene and Posture Management Survey, 2021

IBM has announced its intention to acquire Randori

IBM Corporation logo.  (PRNewsfoto/IBM)

Quote View original content for multimedia download: https://www.prnewswire.com/news-releases/ibm-tackles-growing-attack-surface-risks-with-plans-to-acquire-randori-301561725.html


James G. Williams