FORTUNE -- The normally humdrum world of IT security is heating up, and not just because of comedian Stephen Colbert's controversial closing keynote at last week's RSA Conference.
Why? As the number of large-scale cyberattacks grows, so does the number of innovative startups developing new solutions to thwart those attacks. Venture capitalists are taking notice: In 2013, they made a total 123 investments in security-focused companies, up 108% from the year before, according to research from AGC Partners.
Then there are the recent exits, like FireEye's (FEYE) $1 billion acquisition of computer forensics firm Mandiant and VMware's (VMW) bid to buy mobile security player AirWatch for $1.5 billion. The IPO market is also healthy, with newly public security companies like Palo Alto Networks (PAN), Proofpoint (PFPT), and Barracuda Networks (CUDA) all showing steady if not stellar growth since their debut. In short, it would appear that the recent spate of cyberattacks has been good to the security industry.
"The security market is incredibly interesting," says Shardul Shah, a partner with venture capital firm Index Ventures. "What's happening today is data is residing in new locations -- like the cloud and mobile devices. This is really a change in computing, and it's presenting new opportunities [in security]."
Shah's firm has invested in security startups like Lookout and a still-stealth company called Niara. That said, starting a new security company isn't as easy as, say, launching a mobile app or social media tool. Many security entrepreneurs have already spent years working in the sector, dealing with security-related issues for larger vendors or various branches of government. And they aren't necessarily Ivy League dropouts in their 20s -- more like fully graduated executives in their 30s or 40s.
At last week's RSA Conference in San Francisco, Index Ventures' Shah says he met with about 40 companies seeking investment. (Over 30,000 people attended the confab.) Larger incumbents are taking notice of the increased interest -- and competition -- in the security space. Last year Cisco Systems (CSCO) snapped up security software provider Sourcefire for a whopping $2.7 billion, and this week the networking giant unveiled its strategy for integrating the smaller company's technology. For starters, it is adding Sourcefire's malware protection capabilities into its email and web security appliances. It's also open-sourcing some of its software, allowing users to "create, share, and implement custom application detection."
"Before Sourcefire we weren't doing a ton in the open source community on the security side," says Christopher Young, SVP of Cisco's security group. "Now we're investing heavily in that."
Cisco isn't embracing open source for the sake of the larger community. Rather, it's trying to weave in newer technologies and platforms in an effort to beef up and legitimize its own product portfolio. The fact is, as the sophistication and breadth of cyberattacks has grown, the old tools -- antivirus software and firewalls -- are no longer sufficient. But evolving along with the "bad guys" is harder for larger companies than for new upstarts. That's why it's likely Cisco and its equally deep-pocketed peers are eyeing additional security acquisitions in the coming months and years.
With such consolidation, innovation (on the part of both the good guys and the bad guys), and competition, it's likely investments in security startups will grow even more in 2014. Another perk to the growth in cyberattacks? The RSA conference is a lot less boring -- and more controversial -- than in the past.
At a newly controversial industry conference, an exec sounds the alarm on looming cyber threats and government surveillance.
FORTUNE -- Right now, hundreds of the nation's top security executives are at the RSA Conference in San Francisco holding forth on 2014's looming cyber threats and it's, well, awkward.
After Reuters reported last year that conference-sponsor RSA was working with (and being paid by) the National Security Agency, more than a dozen experts MOREAnne VanderMey - Feb 25, 2014 8:04 PM ET
The cybersecurity pioneer explains why merging the two top security firms was in everyone's best interest.
FORTUNE -- Nearly one-and-a-half months ago, security software provider FireEye (FEYE) acquired Kevin Mandia's company Mandiant in a deal estimated at well over $1 billion. But already, Mandia says integration of the two businesses is nearly complete.
Mandia became a national figure last year after his firm Mandiant, which specializes in responding to computer network breaches, MOREJP Mangalindan, Writer - Feb 13, 2014 3:28 PM ET
A young company's new approach to cybersecurity promises to protect websites that, by their nature, expose their underlying code.
FORTUNE -- There's a reason why you don't hear much about security startups -- there aren't that many out there. Unlike social media tools or mobile apps, developing cybercrime-fighting software can take lots of time. And most investors, not to mention customers, don't want to put their money and trust in a twentysomething, MOREMichal Lev-Ram, writer - Feb 6, 2014 1:13 PM ET
Author Peter W. Singer on the cybersecurity issues threatening the American economy.
By Clay Dillow
FORTUNE -- "Ninety-seven percent of Fortune 500 companies have been hacked," says Peter W. Singer, "and likely the other 3% have too, they just don't know it." Such is the less-than-rosy picture painted by Singer -- director of the Center for 21st Century Security and Intelligence at D.C. think tank Brookings Institution and bestselling author of MOREJan 6, 2014 12:13 PM ET
Worse: if you think your company is safe, think again.
FORTUNE -- It took a group of cyber criminals 19 days to steal the personal information of 40 million people from Target's database, but it will take the retailer much longer to recover from the massive theft.
On Wednesday, security blogger Brian Krebs reported that Target (TGT) was investigating a security breach involving stolen credit and debit card information. The retailer confirmed MORECaroline Fairchild - Dec 19, 2013 3:43 PM ET
Chinese maker of telecom gear, blocked from U.S. market, seeks to overcome security concerns.
FORTUNE -- Remember that 1995 Alanis Morissette song, "Ironic?" Well, here's another unexpected situation to add to the singer's long list of ironies: Huawei, the Chinese telecom equipment maker that has been blocked from the U.S. market because of concerns about its alleged ties to China's government, is now pushing for global cybersecurity standards.
The company MOREMichal Lev-Ram, writer - Oct 18, 2013 11:20 AM ET
The first quantum key distribution network in the United States promises un-hackable data security.
By Clay Dillow
FORTUNE -- As revelations about the depth and breadth of the NSA's digital eavesdropping program continue to come to light, Ohio-based Battelle Memorial Institute is rolling out a new kind of network encryption designed to be virtually un-hackable -- not only now, but in the future. The non-profit research and development contractor has installed MOREOct 14, 2013 5:00 AM ET
A hacker calling himself "Mauritania Attacker" listed the names and some account information (no passwords) of 15,000 Twitter users. It's probably a good idea for users to clean up their apps.
FORTUNE -- A hack of Twitter exposing thousands of usernames and associated third-party access tokens appears not to have done any real damage, but it has made a lot of people realize how many third-party apps they have authorized, inspiring MOREDan Mitchell, contributor - Aug 20, 2013 3:28 PM ET
Kevin Mandia, who uncovered Chinese hacking, describes how he stumbled onto one of the largest domestic security breaches ever.
FORTUNE -- When 42-year-old Kevin Mandia went public last February with a 60-page report detailing the Chinese theft of American trade secrets, the move propelled his cybersecurity firm Mandiant to the forefront of a national security fire storm.
The story of how Mandia discovered one of America's largest security breaches ever -- and MOREJP Mangalindan, Writer - Jul 24, 2013 7:34 PM ET
|AT&T cuts prices again|
|Ukraine crisis: Aid, sanctions and fallout|
|Malaysia Airlines stock sharply lower after plane vanishes|
|Winners and losers of the bull market|
|Can Fox's reboot of 'Cosmos' find an audience?|