Darktrace to Acquire Cado Security in Cloud Defence Push

Share
Darktrace has announced plans to acquire Cado Security
AI cybersecurity firm Darktrace expands its cloud investigation capabilities through purchase of Cado Security, following recent acquisition by Thoma Bravo

Darktrace, the cybersecurity company that uses AI to detect network threats, has announced plans to acquire Cado Security, a UK-based provider of cloud forensics technology

Cado Security’s technology captures data snapshots across cloud environments and analyses them for security compromises. The firm’s investigation platform operates across multi-cloud systems, which allow organisations to use multiple cloud providers simultaneously, container environments that package software code, and serverless computing where cloud providers manage the servers.

Darktrace ActiveAI platform to integrate Cado forensics

The acquisition will see Cado’s forensic investigation capabilities integrated into Darktrace's ActiveAI Security Platform, which uses machine learning to identify unusual patterns in network traffic that might indicate a cyber attack. The combined technology aims to enhance data collection across different cloud environments.

Youtube Placeholder

The integration will expand the capabilities of Darktrace's Cyber AI Analyst, a system that automates the investigation of security alerts. This technology helps security teams manage the volume of automated security warnings, which can number thousands per day in large organisations.

Research reveals cloud security priorities for 2025

Darktrace’s 2024 State of AI Cybersecurity report identifies cloud security as the primary area where defensive artificial intelligence could impact cybersecurity. The company’s threat research indicates that cloud and Software-as-a-Service platforms are frequent entry points for cyber attacks.

The acquisition responds to the increasing migration of corporate data to cloud platforms and growing reliance on cloud-based services for core business operations. This shift has created new vulnerabilities in corporate networks that require specialised detection capabilities.

Key facts
  • 2,400 employees support Darktrace's security platform worldwide
  • 10,000 customers use Darktrace's cyber protection services globally
  • 200 patent applications filed for Darktrace's AI security innovations

Thoma Bravo drives Darktrace R&D expansion

The purchase follows Darktrace’s acquisition by private equity firm Thoma Bravo in October 2024. Cado's research and development teams in London and Bristol will join Darktrace's existing R&D centres in Cambridge and The Hague.

The expansion demonstrates Thoma Bravo's commitment to accelerating Darktrace's growth through AI-augmented cyber solutions. The combined R&D capabilities will focus on developing Cloud Detection and Response technologies that address evolving cyber threats.

Founders bring intelligence service experience

Cado Security was founded by James Campbell and Chris Doman. James previously led Australia's National Incident Response capability at the Australian Signals Directorate and directed PwC's Cyber Incident Response service. His experience includes managing responses to sophisticated cyber espionage and criminal campaigns.

James Campbell and Chris Doman, Co-founders of Cado Security

Chris created the ThreatCrowd intelligence portal, which was later acquired by AT&T through its purchase of AlienVault. He has published research on North Korean government cryptocurrency theft operations and Chinese cyber attacks against dissident websites.

The move builds on Darktrace's cloud security strategy, following its launch of cloud protection services for Amazon Web Services in 2023 and Microsoft Azure in 2024. Darktrace currently protects nearly 10,000 customers globally through a workforce of 2,400 employees.

Piper Sandler acted as financial adviser to Darktrace on the transaction.

"The addition of Cado's deep expertise in cloud-based data collection and forensics will enhance our ability to protect customers, ensuring they can operate securely and confidently across all areas of their business," says Jill Popelka, Chief Executive Officer at Darktrace.

Jill Popelka, Chief Executive Officer at Darktrace

James Campbell, Cado Security Co-Founder and CEO, says: “Darktrace is an excellent fit for Cado, providing an opportunity for growth and innovation while allowing our team to advance their careers within a dynamic company deeply committed to R&D and to protecting its customers from growing cyber threats. Our technologies build on each other’s strengths, and we are incredibly excited to work with the Darktrace team to continue to elevate AI-driven cybersecurity capabilities for our combined global customer base.”

The transaction, which requires regulatory approval, is expected to complete in February 2025.


Explore the latest edition of Cyber Magazine and be part of the conversation at our global conference series, Tech & AI LIVE and Cyber LIVE.

Discover all our upcoming events and secure your tickets today. 


Cyber Magazine is a BizClik brand

Share

Featured Articles

Apple's Siri: How The Most Private AI Assistant Works

After a lawsuit, Apple is eager to prioritise privacy in Siri through its on-device processing, minimal data collection and advanced security protection

How The UK’s AI Plan Will Impact The Cybersecurity Sector

The UK’s £14bn AI investment requires enhanced cybersecurity measures as Kyndryl and Vantage Data Centres prepare for infrastructure expansion

Sophos MDR Reports 37% Customer Growth in Cybersecurity Push

Managed detection service now protects 26,000 organisations as demand rises for round-the-clock threat monitoring and incident response capabilities

Netskope Data Shows Phishing Success Rate Tripled in 2024

Cyber Security

CrowdStrike Field CTO Warns of Identity-Based Attacks Shift

Cyber Security

Gartner: How to Align Risk Management and Governance in 2025

Operational Security