Security is finally lining up with where work actually happens and how teams actually operate. The browser is now a real control point. MDR is becoming something that sits on top of the tools customers already use. Vulnerability data is being pulled closer to day-to-day security operations. And automation is being used to take real work off people, not just tidy up alerts. Moves from companies like CrowdStrike and WatchGuard, along with where investors are putting money, all reflect the same reset. The industry is moving away from ideal architectures and toward mixed, real environments. There’s less patience for security that assumes perfect stacks or endless analyst time. What’s emerging instead is security designed for how organizations actually run, not how diagrams say they should.
Market Pulse: Cybersecurity Deals, Funding, and Platform Shifts
CrowdStrike to acquire Seraphic: CrowdStrike agreed to acquire Seraphic Security as part of its push to extend security controls directly into the web browser, which has become a primary workspace for users and AI agents. The deal will integrate Seraphic’s in-session browser protection with CrowdStrike’s Falcon platform and its planned SGNL acquisition, linking endpoint, identity, browser, and cloud signals into a single security model. The acquisition trend continues for CrowdStrike, as last week, the company signed a definitive agreement to acquire
SGNL to accelerate its leadership in Next-Gen Identity Security, enabling access for human, non-human (NHI), and AI identities.
WatchGuard expands MDR with a platform-agnostic approach:
WatchGuard’s Open MDR reflects a simple reality: customers do not want to replace their security tools just to buy MDR. The service works across mixed environments, pulling data from WatchGuard and third-party tools into a single SOC view. For MSSPs, this makes onboarding easier and allows them to deliver MDR more consistently across customers with different stacks. It also shows how MDR is increasingly being positioned as a layer on top of existing tools, not a closed ecosystem.
Simbian and NuSummit partner on AI-powered MDR:
Simbian and NuSummit are using automation and AI to reduce manual work inside MDR operations. The focus appears to be on automating investigation and response, not just filtering alerts. For MSSPs, this kind of approach is about handling more customers and alerts without needing to scale analyst teams at the same pace.
CommSec enhances its managed SOC with integrated vulnerability scanning:
CommSec added vulnerability scanning directly into its Managed SOC, rather than offering it as a separate service. By combining LevelBlue XDR with Tenable scanning, detection and response are tied more closely to real exposure and risk. For customers, this helps close the gap between identifying vulnerabilities and responding to threats. For MSSPs, it reflects a broader move to bundle vulnerability insight directly into managed security operations instead of selling it as an add-on.
Trend Micro moves its platform into sovereign cloud environments:
Trend Micro plans to deploy Trend Vision One on the AWS European Sovereign Cloud. This matters for partners supporting regulated customers in Europe. MSSPs working with government, defense, or critical infrastructure organizations may now be able to use the platform in environments where standard public cloud services were not an option.
Aikido Security raisers $60 million in funding: Aikido raised $60 million in a funding round led by DST Global, valuing the Belgian cybersecurity startup at $1 billion and making it one of Europe’s first new unicorns of 2026. Founded in 2022, Aikido builds developer-focused security software that automatically detects and addresses risk during software development, including AI-assisted coding.
WitnessAI raised $58 million in funding: WitnessAI raised $58 million in funding as it expands its focus on securing enterprise AI and AI agents. The round included investors such as Sound Ventures, Fin Capital, Qualcomm Ventures, and Samsung Ventures. The company is positioning itself around protecting non-human identities and autonomous AI agents, an area that is quickly emerging as a new security priority as enterprises deploy more agent-based AI systems.
Novee Emerges From Stealth With $51.5M:
Novee emerged from stealth with $51.5 million in funding, led by YL Ventures, Canaan Partners, and Zeev Ventures, less than four months after the company was founded. Novee is building an AI-driven penetration testing platform designed to make offensive security continuous rather than periodic, simulating real-world attackers to uncover exploitable vulnerabilities that traditional scanners often miss.
Have news to share or just want to connect? Reach us anytime at [email protected] or [email protected].
