Bugcrowd Acquires Attack Surface Management Company In Latest Consolidation

The company says the acquisition of Informer will help with automating the identification of exposed assets.

Bugcrowd unveiled the acquisition of a decade-old provider of external attack surface management capabilities, Informer, in the latest in a series of acquisitions in the space.

Terms of the acquisition weren’t disclosed. Informer has 15 employees, Bugcrowd told CRN.

[Related: As Palo Alto Networks Absorbs IBM QRadar, Traditional SIEM Is Fading: Analysis]

Along with external attack surface management, which involves monitoring systems and assets for internet exposure and other vulnerabilities, Informer also offers “continuous” penetration testing capabilities, Bugcrowd said.

The acquisition follows the February announcement of $102 million in growth funding at crowdsourced offensive security platform provider Bugcrowd.

Bugcrowd said that the addition of Informer, which was founded in 2014, will bolster its platform in a number of ways, including by helping with automating the identification of exposed assets. Informer’s approach brings together continuous asset discovery with penetration testing “in one platform,” Bugcrowd said in a news release.

The attack surface management (ASM) market has seen significant consolidation over several years now, with security vendors including Palo Alto Networks, CrowdStrike, Microsoft and Tenable among the many that have acquired ASM providers since 2020.