CyberSecurity

CyberSecurity行业分类

 * 个人电脑手机的安全/防毒软硬件，基本没市场（Mac不需要；Windows自带；Android,IOS 本身解决）
 * 企事业/大小公司/政府，到现在都有：
 * 防火墙 (CSCO, PANW, JNPR, FTNT, CHKP, FFIV)
 * 防病毒软件 (MCFE, CRWD, FEYE)
 * security operation and response (TENB, SPLK), 顶多就是更新换代;
 * 也都需要security information protection / incident management (CRWD, FEYE)
 * 数据保护 (VRNS (Data Security & Insider Threat Detection))
 * 个人，企事业，政府使用Cloud越来越多. Cloud Security包括：
 * cloud security infrastructure (ZS, QLYS)
 * cloud firewall/DDos protection (NET)
 * Identity management (CYBR, OKTA, OSPN, SAIL)
 * 政府各部门有关：
 * national security and defence (TLS, PLTR, MANT, SAIC)

From Chen哥：
前两天忘了群里哪位提到网络安全，我正好这几年搞了一通网络安全，也借这个机会交流一下.

关于网络安全，互联网网络安全已经非常成熟了，专业互联网网络安全公司就是那些，中国也出了360等几个，在360开启了免费模式后，其他全死了，所以没有卖点. 估计大家投资也不用看这类的企业了，连360自己也弄不下去了，开始转向工业网络安全.

网络安全方面未来可能会兴起的是工业互联网安全、物联网安全和车联网安全，中国的储健就是搞这个的. 这是未来生活发展的必须，也是各国现在都在投入本钱解决的问题，主要是对工业和基础设施方面的防护，防止恐怖袭击和网络战. 像核电站被入侵、电力系统入侵被停电，城市供水、轨道交通等等都是问题.

可是，现在的工业互联网，上面说到的，国际上没有形成标准的协议，漏洞特别多，像GE、西门子、日本企业、韩国企业、欧洲工业企业、中国企业等等，五花八门. 举个例子：之前有所谓的智能家居，概念不错，实际上一旦把家用电器集合到网络上，比如空调、冰箱等，一部手机即可侵入. 如果有仇，那家里就危险了，可以远程引爆；没仇的，可以通过工业网络入侵家里的电脑获得需要的信息.

所以，工业互联网的安全防护在系统设计的难点是，全球范围内工业协议太多、漏洞太多，没有一家网安企业可以获得完整的病毒库，那么出来的网安产品就没有通用性，都是一对一，成本就非常高. 现在工业网络安全的企业，一是不赚钱、二是形不成相对固定的产品，基本上搞一家死一家，三是即便搞也搞不大. 整个行业就是概念不错，但企业前景堪忧. 未来可能需要在全球范围内先统一工业协议，就好比当年互联网一样，否则，这个行业基本没戏.


 * 不仅仅是协议. 任何一个软件产品都包含了一长串的其它软件，从底层的firmware、操作系统到软件本身用到的第三方软件包，任何一个环节都有可能有安全漏洞. 把关键东西如门锁换成智能的，是有点欠考虑，随时都有可能被人黑掉.

CyberSecurity ETF: HACK, BUG, CIBR, IHAK
While network equipment provider Cisco is one of HACK's top holdings, CrowdStrike Holdings (CRWD), a monster of a cybersecurity company with 80+% revenue CAGR, is nowhere to be seen in the top 10. In fact, HACK does hold CrowdStrike, but it is way down the ranks, the 22nd largest holding. In contrast, the other three ETFs (BUG, CIBR, and IHAK) each have CrowdStrike listed as the number one holding.


 * CRWD看来是基金的最爱，风头盖过了FEYE， 两个业务相似：security incident detection and response, from endpoints to cloud.

SPAC

 * SCVX (NYSE: SCVX)
 * is a cybersecurity-focused Special Purpose Acquisition Company (SPAC), an investment vehicle that provides an alternative path to IPO, led by a team of industry experts. SCVX was created to fill what we believe is a tremendous void in the cybersecurity market for a scalable, comprehensive, integrated platform.


 * NDAC:
 * NightDragon Acquisition Corp. (NDACU), a SPAC founded by the former CEO of cybersecurity firms FireEye (NASDAQ:FEYE) and McAfee Inc., expects to begin trading Tuesday on the Nasdaq after raising $300M in an initial public offering. NightDragon is headed by Dave DeWalt, who served as CEO and/or chairman of FireEye from 2012 to 2017. Prior to that, he served as president and CEO of computer-security firm McAfee.  DeWalt is also a former top EMC Corp. executive, and currently serves on Delta Air Lines’ board. Additionally, he heads a venture-capital firm named NightDragon.  The special purpose acquisition company’s investment units will trade under the ticker symbol “NDACU.” Its shares and warrants will later trade separately as “NDAC” and “NDACW,” respectively.

CyberSecurity News

 * Amid that acceleration, 93% of respondents say they're shifting more of their security budget to cloud security-as-a-service - and 89% expect cloud SaaS to grow faster than the overall security budget.
 * That bodes well for the best-positioned companies to take advantage of a shift to cloud security-as-a-service: Zscaler (NASDAQ:ZS), CrowdStrike (NASDAQ:CRWD) and F5 Networks (NASDAQ:FFIV)
 * On Endpoint, again Needham sees CrowdStrike taking share relative to Carbon Black (NASDAQ:CBLK), McAfee (NASDAQ:MCFE) and Symantec (NYSE:ACN).
 * On Endpoint, again Needham sees CrowdStrike taking share relative to Carbon Black (NASDAQ:CBLK), McAfee (NASDAQ:MCFE) and Symantec (NYSE:ACN).


 * On Vulnerability Management, CrowdStrike is cited as a leader. Another company, Qualys (NASDAQ:QLYS), was signaled as a strong performer in the survey, but Needham notes it's heard Rapid7 (NASDAQ:RPD) and Tenable Holdings (NASDAQ:TENB) are taking share (relative basis), leaving the firm with a more mixed view on Qualys.
 * The U.S. Senate intelligence committee will hold a hearing on February 23 on the Russia-linked SolarWinds (SWI -2.8%) hack that breached a number of federal agencies. The hearing will include executives from Microsoft (MSFT -0.6%), FireEye (FEYE +1.4%), and CrowdStrike (CRWD +0.1%).  Yesterday, White House Deputy National Security Advisor Anne Neuberger said the federal review into the hack, which was launched from within the United States, would likely take several months.
 * FireEye discovered the SolarWinds breach late last year while investigating its own attack, which accessed security testing tools. After SolarWinds became aware of the breach, the company deployed CrowdStrike's endpoint protection platform.
 * 'CyberSecurity-36' portfolio update on March 7,2021:
 * We think cyber is about to enter a period of accelerating growth. We think the top names - your CrowdStrikes (OTC:CRWD), ZScalers (ZS), FireEyes (FEYE) and so forth are going to see a whole new market opportunity before them as the security budget is taken up at CEO / CFO level following those high profile hacks.
 * March 16, 2021 Wedbush touts cybersecurity favorites as hacks bring 'new age' for sector
 * Source: https://seekingalpha.com/news/3673423-wedbush-touts-cybersecurity-favorites-as-hacks-bring-new-age-for-sector?mail_subject=tls-tenb-wedbush-touts-cybersecurity-favorites-as-hacks-bring-new-age-for-sector&utm_campaign=rta-stock-news&utm_content=link-1&utm_medium=email&utm_source=seeking_alpha
 * March 16, 2021 Wedbush touts cybersecurity favorites as hacks bring 'new age' for sector
 * Source: https://seekingalpha.com/news/3673423-wedbush-touts-cybersecurity-favorites-as-hacks-bring-new-age-for-sector?mail_subject=tls-tenb-wedbush-touts-cybersecurity-favorites-as-hacks-bring-new-age-for-sector&utm_campaign=rta-stock-news&utm_content=link-1&utm_medium=email&utm_source=seeking_alpha


 * "We believe there is a $200 billion dollar growth opportunity in cloud security 'up for grabs' over the next five years for those vendors that have the solution sets to protect critical cloud deployments from growing threats/attacks."
 * Wedbush has high conviction in owning the secular winners, and also expects a surge of M&A to take place both from strategic and financial players.
 * The favorite names in the coverage: Still Varonis Systems (NASDAQ:VRNS), Zscaler (NASDAQ:ZS), Telos (NASDAQ:TLS), SailPoint Technologies Holdings (NYSE:SAIL), Tenable Holdings (NASDAQ:TENB), Palo Alto Networks (NYSE:PANW) and Fortinet (NASDAQ:FTNT). That's in addition to "a slew of private pure plays attacking this (total addressable market)," the firm says.
 * Among its higher-upside price targets, a target of $62 on Tenable implies 54% upside; a target of $80 on SailPoint implies 49% upside; and its target of $450 on Palo Alto Networks suggests 32% upside.

DFNS / IronNet CyberSecurity
IronNet Cybersecurity Inc., a global cybersecurity company, on Monday said it reached a merger deal with LGL Systems Acquisition Corp. (DFNS), a special purpose acquisition company.

On closing, the combined company will be renamed IronNet Cybersecurity and will be listed on the New York Stock Exchange and trade under the ticker symbol "IRNT," according to a news release.

LGL Systems, which currently holds about $173 million cash in trust, will merge with IronNet at an estimated pro forma total enterprise value of $927 million. Assuming no redemptions by LGL's existing public stockholders, IronNet's existing stockholders will hold approximately 72% of the fully diluted shares of common stock in the combined company.

The merged company will receive about $267 million in net proceeds, assuming no redemptions by LGL's existing public stockholders, including proceeds from a $125 million PIPE transaction.