Fortra

Last updated
Fortra
Company type Private
Industry Information security
Founded1982 in Minneapolis, Minnesota
Key people
Kate Bolseth, CEO; Matt Reck, President
ProductsCybersecurity software and services
Number of employees
3,000
Parent TA Associates, Harvest Partners, Charlesbank Capital Partners, HGGC
Website www.fortra.com

Fortra is an American cybersecurity company based in Eden Prairie, Minnesota. [1] [2] The company was founded as Help/38 in 1982, rebranded as HelpSystems in 1988, and became Fortra in 2022. Fortra is owned by private equity firms TA Associates, Harvest Partners, Charlesbank Capital Partners, and HGGC.

Contents

History

Help/38 was founded in 1982 by Dick Jacobson. [3] [4] Help/38's first product, Robot/38, provided IT automation for the IBM System/38. [5] In 1988, when IBM replaced the System/38 with the AS/400, the company became known as HelpSystems (sometimes stylized as Help/Systems).

In 1992, HelpSystems became the first software company in the United States to be certified under the ISO 9001 standard. [6]

Between 2005 and 2018, HelpSystems experienced growth and multiple changes in ownership. Acquired by Summit Partners in 2005 [7] and Audax Group in 2007, [8] the company expanded its offerings through the acquisition of several software firms. [9] [4] Summit Partners repurchased a majority stake in 2012, [7] followed by a series of acquisitions including Safestone, [10] CCSS, [11] and IBM's ShowCase business intelligence products. [12]

H.I.G. Capital acquired the company in 2015. [13] Subsequent additions of Tango/04 Computing Group, [14] Linoma Software, [15] and TeamQuest [16] added real-time monitoring, secure file transfer, and IT service optimization solutions to HelpSystems' offerings. In 2018, private equity firm HGGC became the lead investor, [17] and HelpSystems acquired Midrange Performance Group. [18]

HelpSystems further expanded its cybersecurity capabilities in 2019 through the acquisition of Core Security [19] and UK-based Clearswift. [20] TA Associates and Charlesbank Capital Partners also became investors. [21] In 2020, the company expanded further by acquiring data classification firms Titus and Boldon James. [22] HelpSystems released a report on COVID-19's impact on financial services firms' cybersecurity, [23] and acquired cloud-based data protection provider Vera. [24]

In 2021, HelpSystems acquired several companies to expand its cybersecurity and data protection services, including FileCatalyst, [25] Digital Defense, [26] Beyond Security, [27] Agari, [28] PhishLabs, [29] and Digital Guardian. [30] During this time, private equity firm Harvest Partners SCF LP also acquired partial ownership in HelpSystems. [31] A 2021 report from PhishLabs by HelpSystems showed that social media attacks had doubled that year, with financial institutions being the most targeted sector. [32]

In 2022, HelpSystems expanded its portfolio with the acquisitions of Tripwire, [33] Alert Logic, [34] Terranova Security, [35] and Outflank. [36] These acquisitions extended Fortra's cybersecurity capabilities, adding solutions for IT security compliance, cloud-based security, security awareness training, and advanced threat detection respectively. In October of that year, PhishLabs by HelpSystems identified a weakness in Google Ads being used by attackers to target financial institutions. [37] HelpSystems rebranded as Fortra in November 2022. [38] [39]

In 2023, Fortra collaborated with Microsoft's Digital Crimes Unit and Health Information Sharing and Analysis Center to combat the abuse of cracked, legacy copies of their Cobalt Strike software by cybercriminals for distributing malware, including ransomware. The U.S. District Court for the Eastern District of New York authorized the disruption of malicious infrastructure, enabling relevant ISPs and CERTs to take it offline. [2] [40]

In July 2024, Fortra collaborated with Europol in "Operation Morpheus" to dismantle nearly 600 IP addresses associated with the criminal use of Cobalt Strike. This effort, involving 27 countries and private sector partners, significantly enhanced global cybersecurity by mitigating the misuse of Fortra's software for malicious activities. [41] [42]

Products and services

Fortra categorizes its cybersecurity and automation products into the following areas:

Data protection

Fortra's data protection solutions focus on protecting sensitive information from unauthorized access and data breaches. Digital Guardian offers data loss prevention (DLP) and secure collaboration. [43] Fortra's Data Classification Suite, previously known as Titus and Boldon James, specializes in data classification and security, ensuring that data is appropriately marked and handled. [22] [44]

Infrastructure protection

Fortra's infrastructure protection segment includes Cobalt Strike, Outflank, Core Security, Digital Defense, and Beyond Security, which offer tools and services for penetration testing, vulnerability management, fuzz testing, and red teaming. [45] [46]

Digital risk and email security

Agari's email security solutions protect organizations from phishing and email-based attacks. [47] PhishLabs provides digital risk protection services, including threat intelligence and anti-phishing capabilities. [48] Clearswift specializes in content inspection and data loss prevention. [49]

Security awareness training

Terranova Security offers security awareness training, equipping employees with the knowledge to recognize and prevent cybersecurity threats. This training is intended to build a human firewall against cyber attacks. [50]

Managed security services

Fortra's managed security services provide security monitoring and management. [51] Alert Logic delivers cloud-based managed detection and response (MDR), extended detection and response (XDR), and managed web application firewall (WAF). [52] [53] Tripwire's managed services focus on maintaining IT system file integrity and compliance. [54] Digital Guardian provides managed data loss prevention (DLP) and PhishLabs offers managed digital risk protection. [55] [56]

Secure file transfer

GoAnywhere MFT provides encrypted file transfer capabilities, aligning with various regulatory standards like PCI DSS and HIPAA. [57] The system features audit trails and automated workflows, accessible through a browser-based interface.

Related Research Articles

<span class="mw-page-title-main">Accenture</span> US multinational professional services company

Accenture plc is an American multinational professional services company headquartered in Dublin for tax reasons, specializing in information technology (IT) services and consulting. A Fortune Global 500 company, it reported revenues of $64.1 billion in 2023. Accenture's clients include 91 of the Fortune Global 100 and more than three-quarters of the Fortune Global 500. As of 2022, Accenture is considered the largest consulting firm in the world by number of employees.

<span class="mw-page-title-main">Trend Micro</span> Japanese multinational cyber security company

Trend Micro Inc. is an American-Japanese cyber security software company. The company has globally dispersed R&D in 16 locations across every continent excluding Antarctica. The company develops enterprise security software for servers, containers, & cloud computing environments, networks, and end points. Its cloud and virtualization security products provide automated security for customers of VMware, Amazon AWS, Microsoft Azure, and Google Cloud Platform.

Barracuda Networks, Inc. is a company providing security, networking and storage products based on network appliances and cloud services.

<span class="mw-page-title-main">Tripwire (company)</span> American software company

Tripwire, Inc. is a software company based in Portland, Oregon, that focuses on security and compliance automation. It is a subsidiary of technology company Fortra.

<span class="mw-page-title-main">IID (company)</span> Privately held Internet security company based in Tacoma

IID, previously Internet Identity, was a privately held Internet security company based in Tacoma. IID was acquired in an all-cash transaction by Infoblox on February 8, 2016. It primarily provides cyberthreat data, a platform to exchange cyberthreat data, and anti-phishing, malware and domain control security services to US federal government agencies, financial service firms, and e-commerce, social networking and Internet Service Provider(ISP) companies. Microsoft uses IID as a data feed for its anti-phishing software as well as a partner in their Domain Defense Program. Other customers include BECU, Monster.com and Yakima Valley Credit Union.

Webroot Inc. is an American privately-held cybersecurity software company that provides Internet security for consumers and businesses. The company was founded in Boulder, Colorado, US, and is now headquartered in Broomfield, Colorado, and has US operations in San Mateo and San Diego, and globally in Australia, Austria, Ireland, Japan and the United Kingdom.

<span class="mw-page-title-main">EPAM Systems</span> American technology company

EPAM Systems, Inc. is an American company that specializes in software engineering services, digital platform engineering, and digital product design, operating out of Newtown, Pennsylvania. EPAM is a founding member of the MACH Alliance.

Trellix is a privately held cybersecurity company that was founded in 2022. It has been involved in the detection and prevention of major cybersecurity attacks. It provides hardware, software, and services to investigate cybersecurity attacks, protect against malicious software, and analyze IT security risks.

<span class="mw-page-title-main">Mimecast</span> Information technology company

Mimecast Limited is an American–British, Jersey-domiciled company specializing in cloud-based email management for Google Workspace, Microsoft Exchange and Microsoft Office 365, including security, archiving, and continuity services to protect business mail.

Core Security by HelpSystems is an American computer and network security company provides cyber threat prevention and identity access management software products and services, including penetration testing, network traffic analysis, threat detection, privileged access management, and identity governance The company’s research arm, CoreLabs, identifies new IT security vulnerabilities, publishes public vulnerability advisories, and works with vendors to assist in eliminating the exposures they find.

HGGC, LLC is an American middle-market private equity firm based in Palo Alto, California, with over $7 billion of cumulative capital commitments. Since its inception in 2007, HGGC has completed transactions with an aggregate transaction value of $50 billion. The firm was named 2014 M&A Mid-Market Private Equity Firm of the Year by Mergers & Acquisitions magazine.

<span class="mw-page-title-main">Netwrix</span>

Netwrix is a Frisco, Texas-based private IT security software company that develops software to help companies identify and secure sensitive data and assist with compliance auditing. After eight acquisitions the company's team geographically expanded to Latin America, UK, Germany, France, Asia, USA as well as other countries. The company's flagship products are Netwrix Auditor and StealthAUDIT that help information security and governance professionals manage sensitive, regulated and business-critical data.

Idera, Inc. is the parent company of a portfolio of brands that offer B2B software including database tools, application development tools, test management tools, and DevOps tools. It is headquartered in Houston, Texas and has offices in Australia, Austria, and the United Kingdom. It is owned by the private equity firms HGGC, Partners Group and TA Associates.

<span class="mw-page-title-main">RiskIQ</span> American cyber security company

RiskIQ, Inc. was a cyber security company that was based in San Francisco, California. It provided cloud-based software as a service (SaaS) for organizations to detect phishing, fraud, malware, and other online security threats.

Cyren Inc. was a cloud-based Internet security technology company that created security services and threat intelligence to businesses. It offered a range of services including web security, DNS security, anti-spam solutions, phishing detection, ransomware protection, URL filtering, malware detection, and botnet attack prevention. Cyren also provided endpoint protection for mobile devices and Internet of Things (IoT) gateways. Major clients included Microsoft, Google, Check Point, Dell, T-Mobile, and Intel. The company announced its closure in February 2023.

Absolute Software Corporation is an American-Canadian company that provides products and services in the fields of endpoint security and zero trust security. It was publicly traded company on the Toronto Stock Exchange (TSX) and Nasdaq until it was acquired by Crosspoint Capital Partners in July 2023.

ZeroFox Holdings, Inc. is an external cybersecurity company based in Baltimore, Maryland. It provides cloud-based software as a service (SaaS) for organizations to expose and disrupt phishing and fraud campaigns, botnet exposures, credential theft, impersonations, data breaches, and physical threats that target brands, domains, people, and assets.

Lieberman Software Corporation is a cyber security software firm that develops automated privileged identity management and secure privileged access management software.

Internet security awareness or Cyber security awareness refers to how much end-users know about the cyber security threats their networks face, the risks they introduce and mitigating security best practices to guide their behavior. End users are considered the weakest link and the primary vulnerability within a network. Since end-users are a major vulnerability, technical means to improve security are not enough. Organizations could also seek to reduce the risk of the human element. This could be accomplished by providing security best practice guidance for end users' awareness of cyber security. Employees could be taught about common threats and how to avoid or mitigate them.

Aqua Security is an Israeli cloud-native application protection company, founded in 2015. In 2021, Aqua Security reached a $1B valuation. It is home to the research team, Aqua Nautilus, focused on cybersecurity research of the cloud native ecosystem. In 2023, the U.S. Army signed with Aqua Security a multimillion-dollar contract for cyber protection services to enhance cloud expansion, zero-trust implementation, and secure software development.

References

  1. "HelpSystems, one of Minnesota's largest software developers, changes name to Fortra". StarTribune. Retrieved 2023-05-17.
  2. 1 2 "Microsoft and cybersecurity firm Fortra go after top hacking tool". Axios. Retrieved 2023-01-10.
  3. "HelpSystems, LLC". PrivCo. Retrieved 2023-05-17.
  4. 1 2 "How HelpSystems Became Fortra". IT Jungle. 9 November 2022. Retrieved 2023-05-17.
  5. "New Products Software & Services". Google Books. Computerworld. 1986-01-27. Retrieved 2023-05-17.
  6. "Help/Systems Receives Investment from Summit Partners". Summit Partners. Retrieved 2023-05-17.
  7. 1 2 "Summit Partners Acquires Control Of Help/Systems–Again". IT Jungle. 23 April 2012. Retrieved 2023-05-17.
  8. "Audax to Buy Help/Systems". Venture Capital Journal. 19 September 2007. Retrieved 2023-05-17.
  9. "Corum Leads Sale of PowerTech to Help/Systems on Behalf of Audax". Corum Group. 11 August 2008. Retrieved 2023-05-17.
  10. "HelpSystems adds SkyView to security line-up". PowerWire. 8 June 2015. Retrieved 2023-05-17.
  11. "Systems Monitoring Made Easier, Better, GUI-er". IT Jungle. 25 July 2016. Retrieved 2023-05-17.
  12. "HelpSystems Acquires International Business Machines - ShowCase Business Intelligence Software Portfolio". Mergr. Retrieved 2023-05-17.
  13. "Summit Selling HelpSystems Again, This Time to H.I.G. Capital". WSJ. Retrieved 2023-05-17.
  14. "HelpSystems Acquires Tango/04 Computing Group". APM Digest. 25 February 2016. Retrieved 2023-05-17.
  15. "Another day, another acquisition for tech company HelpSystems". Minneapolis/St. Paul Business Journal. Retrieved 2023-05-17.
  16. "HelpSystems buys IT company with Minneapolis operations". Minneapolis/St. Paul Business Journal. Retrieved 2023-05-17.
  17. "HGGC Backs HelpSystems". WSJ. Retrieved 2023-05-17.
  18. "HelpSystems Acquires Midrange Performance Group". APM Digest. 22 August 2018. Retrieved 2023-05-17.
  19. "CORE SECURITY HISTORY". Zippia. 27 August 2020. Retrieved 2023-05-17.
  20. "HelpSystems Acquires UK-based Content Protection Firm Clearswift". Security Week. Retrieved 2023-05-17.
  21. "HelpSystems Receives Investment from TA Associates and Charlesbank Capital Partners". FinSMEs. 10 October 2019. Retrieved 2023-05-17.
  22. 1 2 "HelpSystems Acquires Two Security Software Companies". Info Security. 25 June 2020. Retrieved 2023-05-17.
  23. "65% of Financial Services Firms Suffered a Cyberattack Last Year". CISO Mag. 8 November 2020. Retrieved 2023-05-17.
  24. "HelpSystems acquires data security platform provider Vera Security". SiliconANGLE. 24 December 2020. Retrieved 2023-05-17.
  25. "HelpSystems to bolster cybersecurity offering with FileCatalyst acquisition". Fintech Global. 5 January 2021. Retrieved 2023-05-17.
  26. "Minnesota company acquires another San Antonio cyber player". San Antonio Business Journal. Retrieved 2023-05-17.
  27. "HelpSystems Acquires Beyond Security, Expands Cybersecurity Portfolio". Channel Futures. Retrieved 2023-05-17.
  28. "HelpSystems acquires Agari, Beyond Security for cybersecurity enhancement". SC Magazine. 13 May 2021. Retrieved 2023-05-17.
  29. "HelpSystems Goes Phishing For Cyber Threat Hunter". IT Jungle. 25 October 2021. Retrieved 2023-05-17.
  30. "HelpSystems aims to strengthen security portfolio with Digital Guardian acquisition". SC Magazine. 27 October 2021. Retrieved 2023-05-17.
  31. "Harvest Partners Takes a Stake in HelpSystems". The Middle Market. Retrieved 2023-05-17.
  32. "PhishLabs: Social media attacks doubled in 2021". Cyber Magazine. 15 February 2022. Retrieved 2023-05-17.
  33. "HelpSystems Acquires File Integrity Monitoring Company Tripwire". Tech.mn. 10 February 2022. Retrieved 2023-05-17.
  34. "Eden Prairie's HelpSystems announces 10th acquisition in 15 months". StarTribune. Retrieved 2023-05-17.
  35. "HelpSystems acquires cybersecurity awareness trainer". Minneapolis/St. Paul Business Journal. Retrieved 2023-05-17.
  36. "HelpSystems Acquires Outflank". FinSMEs. 2 September 2022. Retrieved 2023-05-17.
  37. "How phishing campaigns abuse Google Ad click tracking redirects". Help Net Security. 21 October 2022. Retrieved 2023-05-17.
  38. "HelpSystems Rebrands As Fortra". My Tech Decisions. 7 November 2022. Retrieved 2023-05-17.
  39. "HelpSystems Rebrands as Fortra, Reflects Evolving Threat Landscape". Channel Futures. Retrieved 2023-05-17.
  40. "Microsoft, hospital group use court order to disrupt ransomware attacks aimed at health sector". CNN. 6 April 2023. Retrieved 2024-01-10.
  41. "Europol nukes nearly 600 IP addresses in Cobalt Strike crackdown". The Register. Retrieved 2024-07-30.
  42. "Operation Morpheus Took Down 593 Cobalt Strike Servers Used By Threat Actors". Security Affairs. Retrieved 2024-07-30.
  43. "Digital Guardian Secure Collaboration". G2.com. Retrieved 2024-01-09.
  44. "Fortra's Data Classification Suite". Fortra.com. Retrieved 2024-01-10.
  45. "IT Infrastructure Protection". Fortra.com. Retrieved 2024-01-10.
  46. "Microsoft, Fortra get court order to disrupt Cobalt Strike". TechTarget. Retrieved 2024-01-10.
  47. "HelpSystems Buys Email Security Firm Agari To Thwart Phishing". CRN.com. Retrieved 2024-01-10.
  48. "Phishing sites trick users with fake HTTPS padlock". TechRadar. 28 November 2018. Retrieved 2024-01-10.
  49. "The top UK cyber security companies". Information-Age.com. 6 October 2023. Retrieved 2024-01-10.
  50. "How to detect and mitigate phishing risks with Microsoft and Terranova Security". Microsoft.com. 25 August 2020. Retrieved 2024-01-09.
  51. "Managed Security Services". Fortra.com. Retrieved 2024-01-10.
  52. "13 Best Intrusion Detection and Prevention Systems (IDPS) for 2023". eSecurity Planet. Retrieved 2024-01-10.
  53. "Fortra Brings Managed XDR to Market". Fortra.com. Retrieved 2024-02-01.
  54. "Tripwire explained". infosec-jobs.com. Retrieved 2024-01-10.
  55. "Top 6 Data Loss Prevention (DLP) Solutions (Full Comparison)". eSecurity Planet. 25 October 2023. Retrieved 2024-02-01.
  56. "New research finds alarming jump in phishing attacks". SecurityBrief.co.nz. Retrieved 2024-02-01.
  57. "GoAnywhere MFT Reviews". Capterra. Retrieved 2024-01-10.
This page is based on this Wikipedia article
Text is available under the CC BY-SA 4.0 license; additional terms may apply.
Images, videos and audio are available under their respective licenses.