IBM Addresses Growing Attack Surface Risks with Plans to Acquire Randori

Randori team

Randori, a leading attack surface management (ASM) and offensive cybersecurity service situated in the Boston region, has revealed ambitions to be acquired by IBM. Randori assists companies in continually identifying externally facing assets that are visible to attackers, whether on-premises or in the cloud, and prioritizing the exposures that represent the highest risk. IBM’s hybrid cloud strategy is progressing, and its range of AI-powered cybersecurity solutions and services is growing.

Listen to this news article

Recent data breaches have revealed that, despite greater expenditure, businesses are still unable to manage their attack surface. In fact, due to the increased usage of cloud, third-party services, the Internet of Things (IoT), and cyber-physical systems, 67 percent of enterprises have seen their external attack surface grow in the last two years. In the last year, 69 percent had been hacked by an unknown, unmanaged, or poorly managed internet-facing asset.

“Our clients today are faced with managing a complex technology landscape of accelerating cyberattacks targeted at applications running across a variety of hybrid cloud environments – from public clouds, private clouds and on-premises,” said Mary O’Brien, General Manager at IBM Security. “In this environment, it is essential for organizations to arm themselves with attacker’s perspective in order to help find their most critical blind spots and focus their efforts on areas that will minimize business disruption and damages to revenue and reputation.”

Randori will be IBM’s fourth purchase in 2022, as the firm looks to expand its hybrid cloud and AI capabilities, especially in cybersecurity. Since Arvind Krishna took over as CEO in April 2020, IBM has acquired more than 20 firms in total.

Randori is headquartered in Waltham, MA, with offices in Denver, CO. Accomplice,.406 Ventures, Harmony Partners, and Legion Capital are among the company’s investors. The financial details were kept under wraps. The acquisition deal is expected to finalize in the coming months, subject to normal closing conditions and any regulatory approvals that may be necessary.

Assuming the Role of Attackers

Photo Mary O’Brien, General Manager at IBM Security
“Our clients today are faced with managing a complex technology landscape of accelerating cyberattacks targeted at applications running across a variety of hybrid cloud environments – from public clouds, private clouds and on-premises,” said Mary O’Brien, General Manager at IBM Security.

Randori is a hacker-led startup which develops software that helps security teams identify weaknesses, analyze risks, and improve their security posture over time by giving a realistic assault experience at scale.

Randori’s unique attack surface management solution, designed to help security teams zero in on previously unknown exposure points, takes into account an adversary’s logic based on real-world attacks. It would be one of the few to prioritize based on level of risk as well as the attractiveness of an asset to potential attackers using their proprietary scoring system.

Because of its unique methodology, Randori was able to design a cloud native solution that prioritizes vulnerabilities and lowers noise by concentrating on each customer’s unique attack surface. Randori will begin mapping a customer’s attack surface by just entering an email domain, assisting in the identification of shadow IT concerns and potential entry points for ransomware.

“We started Randori to ensure every organization has access to the attacker’s perspective,” said Brian Hazzard, Co-Founder and CEO at Randori. “To stay ahead of today’s threats, you need to know what’s exposed and how attackers view your environment – that’s exactly what Randori provides. By joining forces with IBM, we can greatly accelerate this vision and strategy – leveraging IBM’s deep expertise in AI, threat intelligence, offensive security and global reach. Together, we can arm the industry with the attacker’s perspective – helping to give every organization the visibility and insight needed to get in front of the next wave of attacks.”

IBM wants to combine Randori’s attack surface management software with IBM Security QRadar’s extended detection and response (XDR) capabilities when the deal closes. Security teams will be able to use real-time attack surface visibility for intelligent alert triage, threat hunting, and incident response by feeding Randori insights into QRadar XDR. Customers may no longer need to manually monitor new vital apps, and they may be able to respond more rapidly when new issues or rising risks occur on their perimeter.

Randori also offers a system that combines attack surface monitoring with continuous automated red teaming (CART) to stress test defenses and incident response teams for enterprises.

When the acquisition agreement is finalized, IBM will use Randori to complement X-Force Red’s elite hacker-led offensive security services while also enhancing QRadar XDR detection and response capabilities. More clients from across the world would be able to benefit from a top-tier attack experience that can help reveal where companies are most susceptible. IBM’s Managed Security Services will also use Randori data to assist enhance threat detection for thousands of clients.

Executive Summary

Randori, a leading attack surface management (ASM) and offensive cybersecurity service, has been acquired by IBM.
  • The acquisition deal is expected to finalize in the coming months, subject to normal closing conditions and any regulatory approvals that may be necessary.
  • Randori assists companies in continually identifying externally facing assets that are visible to attackers, and prioritizing the exposures that represent the highest risk.

Assuming the Role of Attackers

  • Randori is a hacker-led startup that develops software that helps security teams identify weaknesses, analyze risks, and improve their security posture over time by giving a realistic assault experience at scale.
  • IBM wants to combine Randori’s attack surface management software with IBM Security QRadar’s extended detection and response (XDR) capabilities when the deal closes.