McAfee to buy Foundstone for $86M

IDG News Service - Antivirus software company McAfee Inc. said today that it's buying Foundstone Inc., which makes software for detecting and managing software vulnerabilities, for $86 million in cash.
The acquisition will add Foundstone's line of vulnerability management software to McAfee's growing list of security products. McAfee plans to combine Foundstone's technology for spotting and remediating software vulnerabilities with its intrusion-detection and security policy management products, allowing companies to identify and shield high-priority computer assets from attack.
As part of the deal, Foundstone's professional services group will become part of McAfee's services team, McAfee said.
McAfee's purchase of Mission Viejo, Calif.-based Foundstone follows moves in the past year to focus its product offerings and bolster its standing in the intrusion detection and prevention market. In April 2003, McAfee, formerly Network Associates Inc., paid $220 million to purchase IntruVert Networks Inc. and Entercept Security Technologies Inc.
The acquisitions gave Santa Clara, Calif.-based McAfee a jump-start in detecting both network-based attacks -- IntruVert's specialty -- and attacks targeted at network servers, or "hosts."
McAfee in recent months has also shed products and business units. In December 2003, the company announced the sale of its Magic help desk and management software division to BMC Software Inc., an enterprise management products maker, for $47 million. In April, the company sold its Sniffer family of network management products for $275 million to an investment group including Silver Lake Partners and Texas Pacific Group that relaunched the product under the auspices of a reconstituted Network General Corp.
McAfee will initially focus on getting Foundstone's technology to recognize and interact with the IntruVert and Entercept technologies, as well as McAfee's VirusScan 8, said Vince Rossi, senior vice president of product management at McAfee.
The goal is to help customers assess their exposure to Internet- and network-borne threats using a constantly updated threat profile provided by McAfee's other products. With detailed information on which of their computer assets are the most exposed, IT departments can focus on dealing with the biggest threats to their most critical assets, saving time and effort, he said.
"Entercept and [IntruVert's] IntruShield are primarily focused on delivering proactive risk mitigation, but there's little guidance to customers on how to best use those technologies given their business environment," Rossi said. "Foundstone provides us with a front end that allows customers, in an automated way, to discover their environment and prioritize their resources based on business risk and on threats."
The purchase of privately held Foundstone, which began in 1999 as a security consulting services company and more recently

Reprinted with permission from

IDG.net
Story copyright 2009 International Data Group. All rights reserved.