Microsoft to Acquire RiskIQ

Posted on July 12, 2021 by Paul Thurrott in Cloud, Microsoft 365, Microsoft with 3 Comments

Microsoft announced this morning that it will acquire RiskIQ, which makes threat intelligence and attack surface management solutions. The software giant hasn’t revealed the cost of the transaction, but a Bloomberg report claims that it’s worth over $500 million.

“Organizations are increasingly using the cloud to reimagine every facet of their business, hybrid work has accelerated this digital transformation, and customers are challenged with the increasing sophistication and frequency of cyberattacks,” Microsoft vice president Eric Doerr explains. “Today, Microsoft is announcing that we have entered into a definitive agreement to acquire RiskIQ, a leader in global threat intelligence and attack surface management, to help our shared customers build a more comprehensive view of the global threats to their businesses, better understand vulnerable internet-facing assets, and build world-class threat intelligence.”

As Microsoft says, RiskIQ helps customers discover and assess the security of their entire enterprise attack surface, in the Microsoft cloud, Amazon AWS, other clouds, on-premises, and from their supply chain. It has more than a decade of experience scanning and analyzing the Internet and can help enterprises identify and remediate vulnerable assets before an attacker can capitalize on them.

RiskIQ also owns a crowd-sourced global threat intelligence collection that’s fed by security researchers and analyzed by AI. Microsoft says that it will continue to support, nurture, and grow RiskIQ’s community of customers and security professionals.

You can learn more about RiskIQ from its website.

Tagged with ,

Join the discussion!


Don't have a login but want to join the conversation? Become a Thurrott Premium or Basic User to participate

Comments (3)

3 responses to “Microsoft to Acquire RiskIQ”

  1. waethorn

    Microsoft should've really done some checking on this company: they've been running unwarranted and unwanted scans of my web and email servers since the day I put them up. We're now in a culture of having to opt-out of third-party server scans via data-collecting companies like this. Every day they've been scanning SMTP and web ports from random cloud IP addresses with junk commands. I've blocked whole sets of IP addresses from companies like Digital Ocean and AWS because of it.

  2. derekabraham

    Why is this not raising any questions thats normally associated with big tech mergers?

    • waethorn

      The regulatory oversight that is available approves of it. And you know the answer to the question of 'why'.