Market News

MSSP Market News: AI Funding and Big Consolidation Moves Reshape Security

The money and moves this week point in one direction: AI and consolidation are setting the pace for security’s future. Observe’s $156 million raise shows how quickly enterprises are walking away from bloated observability stacks in favor of platforms that bring logs, metrics, and traces together without ballooning costs. Seemplicity’s $50 million round underscores the same push in exposure management - using AI to filter the noise, automate fixes, and let teams scale without drowning in alerts. Both are less about piling on new tools and more about building leaner platforms that can actually keep up with the speed of threats.

On the deal side, F5 snapping up MantisNet and LevelBlue’s completion of Trustwave acquisition are classic consolidation moves with different angles. F5 is embedding observability directly into its stack, giving providers a way to simplify cloud-native and 5G monitoring without piling on new agents. LevelBlue, meanwhile, is betting big on being the go-to pure-play MSSP, folding in Trustwave’s SOC platform and threat intel to create one of the broadest managed security portfolios in the market. Add Kerberus pushing into crypto antivirus, Zscaler and CrowdStrike tying endpoint and network tighter into SOC workflows, and Frenos and N2K teaming up on OT, and the throughline is clear - big platforms are consolidating, while specialized players are racing to fill the blind spots.

Market Pulse: Cybersecurity Deals, Funding, and Platform Shifts

Seemplicity raises $50 million in Series B funding: Seemplicity has raised $50 million in Series B funding to scale its AI-powered exposure management platform, which consolidates vulnerability findings from multiple tools, prioritizes the most critical issues, and automates remediation workflows. The new funding, led by Sienna Venture Capital with participation from Essentia Venture Capital, Glilot Capital Partners, NTTVC, and S Capital, will accelerate the development of AI agents that deliver contextual risk insights and proactive remediation guidance tailored to each organization’s business logic. Seemplicity is also expanding its global footprint in the U.S., UK, and Europe, aligning its platform with regional compliance frameworks like GDPR and NIS2, while building out a partner ecosystem of MSPs, MSSPs, and resellers to drive channel-led growth.

Observe raises $156 million in Series C funding: Observe has raised $156 million in Series C funding to expand its AI-powered observability platform, which unifies logs, metrics, and traces in a single environment. The platform combines a cost-efficient data lake with a knowledge graph and AI-driven workflows to accelerate troubleshooting, reduce mean time to resolution, and lower operational costs. Enterprises, SaaS providers, and AI-native companies are adopting Observe as an alternative to legacy tools like Splunk and Datadog, attracted by its scalability and efficiency.

F5 acquires MantisNet to expand eBPF-powered observability: F5 has acquired MantisNet to strengthen the observability and network intelligence capabilities of its Application Delivery and Security Platform (ADSP). MantisNet’s Containerized Visibility Fabric delivers kernel-level insights without sidecars or agents, enabling real-time monitoring of encrypted east-west and north-south traffic across cloud-native, virtual, and 5G environments. By embedding observability directly into ADSP and solutions like BIG-IP Next, F5 aims to reduce tool sprawl, simplify deployments, and unify visibility across control and application planes.

LevelBlue completes acquisition of Trustwave: LevelBlue has completed its acquisition of Trustwave, creating the largest independent managed security services provider with a portfolio spanning managed security, MDR, offensive security, incident response, and advisory services. The combined company merges LevelBlue’s threat intelligence and network security expertise with Trustwave’s Fusion Security Operations Platform, SpiderLabs threat intelligence team, and offensive security capabilities.

Kerberus Cyber Security acquires Pocket Universe: Kerberus Cyber Security has acquired Pocket Universe to fold its fraud-prevention extension into Sentinel3 and begin work on what it’s calling the first crypto antivirus. The move expands protection beyond phishing and scam approvals to tackle the growing malware problem that continues to drain user funds. With Pocket Universe’s founders stepping back but still supporting the transition, and Ran Neuner joining as an adviser, Kerberus is positioning itself to deliver a device-level security layer built specifically for crypto activity - something the industry hasn’t yet seen.

Zscaler and CrowdStrike Expand AI partnership: Zscaler is deepening its alliance with CrowdStrike by integrating Falcon with the Zscaler Zero Trust Exchange and Red Canary’s agentic-AI–powered SOC platform, creating a unified foundation for modern SOC operations. The joint approach moves beyond fragmented EDR tools by consolidating endpoint, identity, and network security into a cloud-first architecture designed for automation and scale. The partnership also positions Falcon as the preferred endpoint solution within Red Canary’s ecosystem, giving providers new co-sell opportunities, streamlined service delivery, and a differentiated MDR offering built on speed, automation, and outcome-driven security.

Frenos has partnered with N2K Networks: Frenos and N2K Networks are rolling out what they call the first AI-native OT security posture management platform, combining digital twin threat modeling with certification-based expertise. Powered by Frenos’ AI agent SAIRA, the partnership gives MSSPs a way to standardize OT security across industries, cut reliance on scarce talent, and deliver consistent, certification-aligned services that bridge IT and OT environments.

Thrive Adds Network Detection and Response to Security Portfolio: Thrive has expanded its security portfolio with a Network Detection and Response (NDR) service that delivers real-time visibility into suspicious network activity and helps stop breaches before they escalate. The offering closes gaps left by endpoint- and log-focused defenses by using AI-driven traffic analysis to detect anomalies and trigger immediate response. For MSSPs, NDR adds another layer of protection that can shorten incident response times, reduce breach impact, and lower operational overhead. Bundled into Thrive’s tiered pricing alongside MDR and EDR, it gives providers a way to package full-stack security in a cost-efficient model that strengthens recurring revenue while keeping operations manageable.


Have news to share or just want to connect? Reach us anytime at [email protected] or [email protected].

Suparna Chawla Bhasin

Suparna is the Senior Managing Editor for CyberRisk Alliance’s Channel Brands, including MSSP Alert and ChannelE2E. She manages content development, sharpens editorial workflows, and ensures storytelling is tightly aligned with audience needs. With a background in technology, media, and education, she combines strategic insight with creative execution.

You can skip this ad in 5 seconds