Security industry news in general ...

"So, if you have desktops, you find it hard to protect it against malware relatively soon."

This is a nonsense statement, now you have more options and security tools for everything than ever, if something, the security market is a bubble that will have to regulate.

You have LESS options.  It has become much like ranges, ovens, fridges.  So many brands, but fabricated in only a few plants worldwide ...

This will be the same for desktop protection.  Small suppliers will outsource the core and fix a GUI on it, or bring some intelligence between different product.

Symantec is closing for a reason.  That market is shrinking.

Paul Jr  

Big_Buck said:

Essentialy, Barracuda, Imperva, Veracode and LogRhytm are now under the same umbrella.  You can expect to see all platform sharing some components like AV engines for example.  Pretty soon, the differences will be on the lip stick only.

But these four you list don't meaningfully overlap in terms of functionality, and none of them are primarily an AV vendor last I looked. They share the same private equity owner, yes, but if they remain independant operating entities, then they haven't yet gone the same way as my kitchen appliances.

So, if you have desktops, you'll find it hard to protect it against malware relatively soon.

I'm not sure the sky is falling. AV is a big market, EDR too. We may see unhealthy consolidation for a while, but these consolidation/disruptor cycles have always been going on, and the (paid!) demand for solutions isn't going away. Indeed, as consumers of cybersecurity products get smarter and more sophisticated, I think there's room in the market for new entrants to provide quality and innovation where monoliths no longer can.

In all this, I think the key thing to keep an eye on is how protective and detective controls are fed with threat indicators. The moment you find the same research and IOCs feeding every single technical control you have, is the moment to become really concerned.

Symantec is closing because now there are more competition than ever. In the last 5 or 6 years like 15 or 20 new EDR products have appeared in the market

The security spend, and the security industry is growing every year

The market for PC protection as shrunk dramatically.  Really.

The reason being, well, desktops are dying, and appliances like Iphone just don't need it.

It may appear to one that there is many solutions available, but behind the scene, they all outsource to the same few "REAL" security suppliers.  

What illustrate best what I'm saying is what happened to the tooling industrie:  

You may thing you buy different brand, but there's barely 10 left.

Paul Jr

Interesting enough, here's a note from the TechRadar article

Thoma Bravo has recently purchased a number of cybersecurity firms but Hagerman said that it intends to keep Sophos as a standalone company once the takeover is complete. This will give the firm the opportunity “to continue to grow, expand and execute in its own markets”.

Well, look at yesterday news, https://www.theregister.com/2020/06/04/sophos_100_redundancies_naked_security/

Other sources have now confirmed to The Register that Sophos is slashing 16 per cent of its worldwide headcount, which, judging by its 2019 total of 3,400 people worldwide, works out at about 540 staff.

In an all-staff email chief exec Kris Hagerman said: “Affected employees or their Works Council representatives, where applicable, have now been notified. For some affected employees, this is the start of a period of consultation. Others are now entering a transition period leading up to their departure, with some employees leaving Sophos this week. Approximately 16 per cent of all Sophos roles are potentially impacted.”

From an outsider perspective, I guess you were right.

Same thing that happened with pretty much all other companies Thoma Bravo bought.

Also, if that news article is right, I'll be sad to see Naked Security go away, It is a decent blog.