COLUMBIA, Md. — The cyber risk company Tenable acquired the attack path software specialist Cymptom.
Tenable (Nasdaq: TENB) completed its acquisition of Tel Aviv-based Cymptom to improve the attack-level understanding of its platform for identifying and addressing cyber vulnerabilities, according to Tenable last month.
The terms of the deal were not disclosed.
Cymptom, founded in 2019, is led by veterans of the Israeli Defense Forces and white hat hackers. It has 11 employees, according to LinkedIn.
Tenable expects Cymptom’s attack path analysis will bring additional context and prioritization capabilities to its product line, with a more “unified view” of assets and vulnerabilities.
Cymptom’s agentless platform will be integrated into Tenable’s threat and vulnerability data to provide an “always-on view of every attack path.”
Tenable believes that major cyber breaches, including ransomware, “routinely exploit well-known attack paths” in enterprise networks. Disrupting the attack paths is critical to reducing the probability of a breach.
Cymptom’s attack path management software is designed to help companies “continuously test and evaluate threats,” based on the MITRE ATT&CK framework and the “hacker’s attack perspective,” without agents or running simulated attacks.
“Risk prioritization has become a cornerstone of modern cybersecurity,” said Nico Popp, chief product officer, Tenable.
“By correlating software vulnerabilities and misconfigurations with network and access data, Cymptom can immediately identify exploitable attack and breach pathways.”
Itamar Mizrahi, CEO of Cymptom, said Cymptom’s capabilities will augment Tenable’s ability to predict the “most likely paths, identify choke points, and mitigate flaws before they can be exploited.”
“We are excited to accelerate our mission and eager to work with Tenable’s global team,” Mizrahi said.