Days after Elastic announced the acquisition of build.security, the company is making yet another security acquisition. Elastic disclosed that it is acquiring security vendor CMD. Financial terms of the deal are not being publicly disclosed. Elastic acquires build.security for security policy definition and enforcement
CMD‘s technology provides runtime security for cloud infrastructure, helping organizations gain better visibility into processes that are running. The startup was founded in 2016 and has raised $21.6 million in funding to date. The company’s last round was a $15 million Series B that was announced in 2019, led by GV.
Both build.security and CMD are set to become part of Elastic’s security organization. The two technologies will be integrated into the Elastic Stack platform that provides visibility into what an organization is running, as well as security insights to help limit risk.
CMD’s security service is built with an open source technology known as eBPF. With eBPF, it’s possible to hook into a Linux operating system for visibility and security control. Work is currently ongoing to extend eBPF for Windows workloads, as well.
CMD isn’t the only startup that has been building based on eBP. Isovalent, which announced a $29 million Series A round led by Andreessen Horowitz and Google in November 2020, is also active in the space. The Linux Foundation also recently announced the creation of an eBPF Foundation, with the participation of Facebook, Google, Microsoft, Netflix and Isovalent.
It will take time for Elastic to integrate the CMD technology into the Elastic Stack, though it won’t be too long. Elastic needs to take the technology that other companies have built and fold it into its stack and that sometimes can take time.