The Hidden Cybersecurity Risks of M&A
Merger and acquisition due diligence typically focuses on financials, legal risks, and operational efficiencies. Cybersecurity is often an afterthought — and that's a problem.
A merger can combine networks, identities, and data, creating cybersecurity risks when access controls, processes, and incident response are not aligned.
Search across headline titles and summaries.
Background for this topic.
A merger combines two previously separate organizations into one. For information security, it also means bringing together different identities, networks, cloud environments, devices, policies, and security processes. The security condition of each organization therefore becomes relevant to the other, especially before systems or data are connected.
Security due diligence should identify exposed services, unsupported systems, active incidents, privileged accounts, contractual obligations, and privacy requirements before integration. Afterward, teams need an accurate asset inventory, controlled trust relationships, least-privilege access, coordinated vulnerability management, and compatible logging and incident-response procedures. Data sharing and retention must remain consistent with applicable law and existing commitments; access should not be broadened merely because the organizations now have common ownership.
Weekly headline count for the current query.
Merger and acquisition due diligence typically focuses on financials, legal risks, and operational efficiencies. Cybersecurity is often an afterthought — and that's a problem.
The consolidation folds Cybereason’s endpoint detection and response (EDR) platform into Trustwave’s managed security services offerings.
Careful planning and proactive measures can ensure smooth and secure transitions, paving the way for a successful merger or acquisition.
A Japanese ministry blames a shared Active Directory between merged tech companies Line and South Korea's Naver for a massive data breach last November.
Financing and acquisitions are trending toward smaller deals, which means fewer high-valuation purchases and funding, but likely fewer post-merger layoffs as well.
Dark Reading's analysis suggests that the merger between Human Security and PerimeterX will bring modern defense strategies to disrupt cybercrime and fraud.
Massive merger will put Broadcom's Symantec and VMware's Carbon Black under one roof.