Company type | Private |
---|---|
Industry | Information security |
Founded | 1982 in Minneapolis, Minnesota |
Key people | Kate Bolseth, CEO; Matt Reck, President |
Products | Cybersecurity software and services |
Number of employees | 3,000 |
Parent | TA Associates, Harvest Partners, Charlesbank Capital Partners, HGGC |
Website | www |
Fortra is an American cybersecurity company based in Eden Prairie, Minnesota. [1] [2] The company was founded as Help/38 in 1982, rebranded as HelpSystems in 1988, and became Fortra in 2022. Fortra is owned by private equity firms TA Associates, Harvest Partners, Charlesbank Capital Partners, and HGGC.
Help/38 was founded in 1982 by Dick Jacobson. [3] [4] Help/38's first product, Robot/38, provided IT automation for the IBM System/38. [5] In 1988, when IBM replaced the System/38 with the AS/400, the company became known as HelpSystems (sometimes stylized as Help/Systems).
In 1992, HelpSystems became the first software company in the United States to be certified under the ISO 9001 standard. [6]
Between 2005 and 2018, HelpSystems experienced growth and multiple changes in ownership. Acquired by Summit Partners in 2005 [7] and Audax Group in 2007, [8] the company expanded its offerings through the acquisition of several software firms. [9] [4] Summit Partners repurchased a majority stake in 2012, [7] followed by a series of acquisitions including Safestone, [10] CCSS, [11] and IBM's ShowCase business intelligence products. [12]
H.I.G. Capital acquired the company in 2015. [13] Subsequent additions of Tango/04 Computing Group, [14] Linoma Software, [15] and TeamQuest [16] added real-time monitoring, secure file transfer, and IT service optimization solutions to HelpSystems' offerings. In 2018, private equity firm HGGC became the lead investor, [17] and HelpSystems acquired Midrange Performance Group. [18]
HelpSystems further expanded its cybersecurity capabilities in 2019 through the acquisition of Core Security [19] and UK-based Clearswift. [20] TA Associates and Charlesbank Capital Partners also became investors. [21] In 2020, the company expanded further by acquiring data classification firms Titus and Boldon James. [22] HelpSystems released a report on COVID-19's impact on financial services firms' cybersecurity, [23] and acquired cloud-based data protection provider Vera. [24]
In 2021, HelpSystems acquired several companies to expand its cybersecurity and data protection services, including FileCatalyst, [25] Digital Defense, [26] Beyond Security, [27] Agari, [28] PhishLabs, [29] and Digital Guardian. [30] During this time, private equity firm Harvest Partners SCF LP also acquired partial ownership in HelpSystems. [31] A 2021 report from PhishLabs by HelpSystems showed that social media attacks had doubled that year, with financial institutions being the most targeted sector. [32]
In 2022, HelpSystems expanded its portfolio with the acquisitions of Tripwire, [33] Alert Logic, [34] Terranova Security, [35] and Outflank. [36] These acquisitions extended Fortra's cybersecurity capabilities, adding solutions for IT security compliance, cloud-based security, security awareness training, and advanced threat detection respectively. In October of that year, PhishLabs by HelpSystems identified a weakness in Google Ads being used by attackers to target financial institutions. [37] HelpSystems rebranded as Fortra in November 2022. [38] [39]
In 2023, Fortra collaborated with Microsoft's Digital Crimes Unit and Health Information Sharing and Analysis Center to combat the abuse of cracked, legacy copies of their Cobalt Strike software by cybercriminals for distributing malware, including ransomware. The U.S. District Court for the Eastern District of New York authorized the disruption of malicious infrastructure, enabling relevant ISPs and CERTs to take it offline. [2] [40]
Fortra categorizes its cybersecurity and automation products into the following areas:
Fortra's data protection solutions focus on protecting sensitive information from unauthorized access and data breaches. Digital Guardian offers data loss prevention (DLP) and secure collaboration. [41] Fortra's Data Classification Suite, previously known as Titus and Boldon James, specializes in data classification and security, ensuring that data is appropriately marked and handled. [22] [42]
Fortra's infrastructure protection segment includes products like Cobalt Strike, Outflank, Core Impact, Digital Defense and Beyond Security, which offer penetration and vulnerability assessment. [43] [44]
Agari's email security solutions protect organizations from phishing and email-based attacks. [45] PhishLabs provides digital risk protection services, including threat intelligence and anti-phishing capabilities. [46] Clearswift specializes in content inspection and data loss prevention. [47]
Terranova Security offers security awareness training, equipping employees with the knowledge to recognize and prevent cybersecurity threats. This training is intended to build a human firewall against cyber attacks. [48]
Fortra's managed security services provide security monitoring and management. [49] Alert Logic delivers cloud-based managed detection and response (MDR) as well as managed web application firewall (WAF). [50] Tripwire's managed services focus on maintaining IT system file integrity and compliance. [51] Digital Guardian provides managed data loss prevention (DLP) and PhishLabs offers managed digital risk protection. [52] [53]
GoAnywhere MFT provides encrypted file transfer capabilities, aligning with various regulatory standards like PCI DSS and HIPAA. [54] The system features audit trails and automated workflows, accessible through a browser-based interface.
Unisys Corporation is an American multinational information technology (IT) services and consulting company founded in 1986 and headquartered in Blue Bell, Pennsylvania. The company provides digital workplace, cloud applications & infrastructure, enterprise computing, business process, AI technology and data analytics services.
Trend Micro Inc. is an American-Japanese cyber security software company. The company has globally dispersed R&D in 16 locations across every continent excluding Antarctica. The company develops enterprise security software for servers, containers, & cloud computing environments, networks, and end points. Its cloud and virtualization security products provide automated security for customers of VMware, Amazon AWS, Microsoft Azure, and Google Cloud Platform.
Fortinet, Inc. is a cybersecurity company with headquarters in Sunnyvale, California. The company develops and sells security solutions like firewalls, endpoint security and intrusion detection systems. Fortinet has offices located all over the world.
Barracuda Networks, Inc. is a company providing security, networking and storage products based on network appliances and cloud services. The company's security products include products for protection against email, web surfing, web hackers and instant messaging threats such as spam, spyware, trojans, and viruses. The company's networking and storage products include web filtering, load balancing, application delivery controllers, message archiving, NG firewalls, backup services and data protection.
Tripwire, Inc. is a software company based in Portland, Oregon, that focuses on security and compliance automation. It is a subsidiary of technology company Fortra.
IID, previously Internet Identity, was a privately held Internet security company based in Tacoma. IID was acquired in an all-cash transaction by Infoblox on February 8, 2016. It primarily provides cyberthreat data, a platform to exchange cyberthreat data, and anti-phishing, malware and domain control security services to US federal government agencies, financial service firms, and e-commerce, social networking and Internet Service Provider(ISP) companies. Microsoft uses IID as a data feed for its anti-phishing software as well as a partner in their Domain Defense Program. Other customers include BECU, Monster.com and Yakima Valley Credit Union.
Webroot Inc. is an American privately-held cybersecurity software company that provides Internet security for consumers and businesses. The company was founded in Boulder, Colorado, US, and is now headquartered in Broomfield, Colorado, and has US operations in San Mateo and San Diego, and globally in Australia, Austria, Ireland, Japan and the United Kingdom.
Mimecast Limited is an American–British, Jersey-domiciled company specializing in cloud-based email management for Microsoft Exchange and Microsoft Office 365, including security, archiving, and continuity services to protect business mail.
Core Security by HelpSystems is an American computer and network security company provides cyber threat prevention and identity access management software products and services, including penetration testing, network traffic analysis, threat detection, privileged access management, and identity governance The company’s research arm, CoreLabs, identifies new IT security vulnerabilities, publishes public vulnerability advisories, and works with vendors to assist in eliminating the exposures they find.
Trustwave is an American cybersecurity subsidiary of The Chertoff Group. It focuses on providing managed detection and response (MDR), managed security services (MSS), database security, and email security to organizations around the globe.
HGGC, LLC is an American middle-market private equity firm based in Palo Alto, California, with over $7 billion of cumulative capital commitments. Since its inception in 2007, HGGC has completed transactions with an aggregate transaction value of $50 billion. The firm was named 2014 M&A Mid-Market Private Equity Firm of the Year by Mergers & Acquisitions magazine.
Idera, Inc. is the parent company of a portfolio of brands that offer B2B software including database tools, application development tools, test management tools, and DevOps tools. It is headquartered in Houston, Texas and has offices in Australia, Austria, and the United Kingdom. It is owned by the private equity firms HGGC, Partners Group and TA Associates.
RiskIQ, Inc. was a cyber security company that was based in San Francisco, California. It provided cloud-based software as a service (SaaS) for organizations to detect phishing, fraud, malware, and other online security threats.
Cyren Inc. was a cloud-based Internet security technology company that provided security services and threat intelligence to businesses. It offered a range of services including web security, DNS security, anti-spam solutions, phishing detection, ransomware protection, URL filtering, malware detection, and botnet attack prevention. Cyren also provided endpoint protection for mobile devices and Internet of Things (IoT) gateways. Major clients included Microsoft, Google, Check Point, Dell, T-Mobile, and Intel. The company announced its closure in February 2023.
Absolute Software Corporation is an American-Canadian company that provides products and services in the fields of endpoint security and zero trust security. It was publicly traded company on the Toronto Stock Exchange (TSX) and Nasdaq until it was acquired by Crosspoint Capital Partners in July 2023.
Gili Raanan is an Israeli venture capitalist and one of the inventors of CAPTCHA, the WAF and many other inventions in the fields of application security and discovery. Raanan started Sanctum in 1997, and invented the first Web application firewall AppShield and the first Web application penetration testing software AppScan. He later started NLayers which was acquired by EMC Corporation pioneering the science of Application discovery and understanding. He is an investor and a General Partner at Sequoia Capital, the Founder of Cyberstarts, and was a board member at Adallom, Armis Security, Onavo, Moovit, and Innovid (NYSE:CTV).
ZeroFox Holdings, Inc. is an external cybersecurity company based in Baltimore, Maryland. It provides cloud-based software as a service (SaaS) for organizations to expose and disrupt phishing and fraud campaigns, botnet exposures, credential theft, impersonations, data breaches, and physical threats that target brands, domains, people, and assets.
Lieberman Software Corporation is a cyber security software firm that develops automated privileged identity management and secure privileged access management software.
Internet security awareness or Cyber security awareness refers to how much end-users know about the cyber security threats their networks face, the risks they introduce and mitigating security best practices to guide their behavior. End users are considered the weakest link and the primary vulnerability within a network. Since end-users are a major vulnerability, technical means to improve security are not enough. Organizations could also seek to reduce the risk of the human element. This could be accomplished by providing security best practice guidance for end users' awareness of cyber security. Employees could be taught about common threats and how to avoid or mitigate them.
Talon Cyber Security is an Israel-based provider of cybersecurity technologies with headquarters in Tel Aviv. It develops a secure browser engineered to provide enterprise-grade security across all devices, irrespective of location, device type, or operating system.