The global cybersecurity sector experienced a year of unprecedented consolidation in 2025, with merger and acquisition activity reaching new financial heights. Eight cybersecurity acquisitions surpassed the $1 billion mark, underscoring the strategic importance of security technologies as enterprises race to defend against increasingly complex digital threats.
Industry tracking shows more than 420 cybersecurity-related M&A deals announced during the year, slightly exceeding 2024’s pace. Collectively, disclosed transaction values topped $84 billion, with deals valued at $1 billion or more accounting for nearly $75 billion of that total. The surge highlights how large technology vendors and private equity firms are aggressively expanding their security portfolios through acquisitions rather than organic growth alone.
Google Revives and Secures Wiz Deal
The largest cybersecurity acquisition of 2025 came from Google, which revived and finalized plans to acquire cloud security leader Wiz after earlier talks collapsed in 2024. The $32 billion all-cash deal, cleared by the U.S. Department of Justice in November, is expected to close in 2026. Google has emphasized that Wiz’s products will remain cloud-agnostic, continuing to support all major cloud providers while strengthening Google Cloud’s security offerings.
Palo Alto Networks Makes Major Moves
Palo Alto Networks announced the second-largest deal of the year with its $25 billion acquisition of identity security specialist CyberArk, a transaction that recently received shareholder approval. The deal marks Palo Alto’s formal expansion into identity security.
Separately, the company completed its $3.35 billion purchase of observability firm Chronosphere, integrating the technology into its Cortex AgentiX platform to enhance AI-driven security operations.
ServiceNow Expands Security and Identity Capabilities
Enterprise software giant ServiceNow unveiled two significant acquisitions. Its largest-ever deal targets Armis, a firm specializing in asset discovery across IT, OT, and IoT environments. The $7.75 billion cash acquisition is expected to fully close in the second half of 2026.
ServiceNow is also acquiring identity security company Veza for approximately $1 billion, a move designed to strengthen identity and access management across applications, cloud environments, data platforms, and AI systems.
Private Equity and Platform Expansion
Private equity firm Francisco Partners moved to take Apple device management and security provider Jamf private in a $2.2 billion acquisition. Once finalized, Jamf will continue operating independently but will no longer be publicly traded.
Meanwhile, Veeam Software completed a $1.725 billion acquisition of Securiti AI, combining data resilience with data security posture management, privacy, governance, and AI trust capabilities.
Proofpoint Targets European Growth
Email and cloud security firm Proofpoint strengthened its European presence with the $1.8 billion acquisition of Hornetsecurity, a Germany-based Microsoft 365 security provider. The deal adds close to $200 million in annual recurring revenue and significantly expands Proofpoint’s footprint across Europe.
Other Notable Deals
Several additional transactions shaped the broader security and IT landscape:
- SolarWinds was acquired by Turn/River Capital for roughly $4.4 billion, though it is typically classified as an IT operations company rather than a pure-play cybersecurity firm.
- Mitsubishi Electric moved to acquire industrial cybersecurity specialist Nozomi Networks, valuing the company at nearly $1 billion as it expands into OT and IoT security.
- Zscaler purchased managed detection and response provider Red Canary for about $675 million, bolstering its security operations center capabilities.
Looking Ahead to 2026
Analysts expect cybersecurity consolidation to continue into 2026 as enterprises prioritize unified platforms that span cloud, identity, data, and AI security. With billions already committed and more deals in the pipeline, 2025 may prove to be a turning point in reshaping the cybersecurity market for the decade ahead.
