Ten cybersecurity companies making big moves at RSAC 2025

Alongside a number of major product launches—including from Palo Alto Networks, CrowdStrike and SentinelOne—vendors have announced acquisitions and funding during the massive security conference in San Francisco this week.

While there is no escaping the presence of AI at the RSAC Conference 2025 this week in San Francisco, there’s a sense that the cybersecurity tools leveraging emerging AI capabilities are now entering a new phase of usefulness.

That can be seen in many of the major announcements at RSAC 2025, including from top industry vendors Palo Alto Networks, CrowdStrike and SentinelOne—all of which unveiled new AI-powered products and capabilities.

But there have been plenty of other announcements, too, including new funding rounds, startup acquisitions and channel moves—including a major new channel chief hire by an up-and-coming security player.

What follows are the key details on 10 cybersecurity companies making big moves at RSAC 2025.

Palo Alto Networks

Palo Alto Networks made an array of announcements in connection with RSAC 25 this week, including a number of new products and a planned acquisition of an AI security startup. The cybersecurity giant said it plans to acquire Protect AI as the company looks to accelerate its protection of technologies including GenAI and agents. On the product front, Palo Alto Networks debuted Cortex XSIAM 3.0 with major updates including the introduction of advanced email security. The company is bringing a combination of “using AI to analyze email and multiple data sources stitched together,” Chief Product Officer Lee Klarich told CRN this week. “We think [that] is what is required going forward to really secure email.”

Other product launches by Palo Alto Networks this week included Prisma SASE updates such as the introduction of Prisma Access Browser 2.0—which now provides real-time visibility and access control for GenAI usage—and the debut of the company’s new AI security platform, Prisma AIRS. The platform’s capabilities include AI model scanning as well as posture management, AI red teaming and runtime security. Prisma AIRS will also offer security for AI agents, with capabilities to protect against threats to AI agents that include impersonation of identities and manipulation of memory as well as tool misuse, the company said.

CrowdStrike

CrowdStrike launched a range of new offerings at RSAC 2025 in many of its key categories while expanding its own agentic capabilities. “If you thematically look at everything, it’s all about agentic AI and how we’re bringing agentic AI to life for partners and for customers in the platform,” Chief Business Officer Daniel Bernard told CRN this week. On Monday, CrowdStrike debuted two new agentic AI tools for its Charlotte AI platform, with the launch of Charlotte AI Agentic Response and Charlotte AI Agentic Workflows.

Other updates Monday included Falcon Adversary OverWatch Next-Gen SIEM, which stands out by bringing managed threat hunting to the realm of third-party data, according to CrowdStrike. Then on Tuesday, the cybersecurity giant unveiled major Falcon Data Protection enhancements with the launch of Falcon Data Protection for Cloud and several new capabilities in Falcon Data Protection for Endpoint—including encryption detection, GenAI data leak prevention and macOS expanded protection. In addition, CrowdStrike Tuesday added AI security capabilities including AI model scanning as well as the “shadow AI” detection.

SentinelOne

At RSAC 2025, SentinelOne unveiled major enhancements to its AI-powered security capabilities with the debut of its next version of its Purple AI technology. The new release, Purple AI Athena, includes agentic AI functionality that aims to mirror security reasoning and orchestration of experienced security operations analysts. Key capabilities include the execution of complete investigations into suspicious activity spanning multiple sources as well as orchestration of multiple steps in responses and rapid threat remediation.

Notably, Athena “detaches and decouples AI from the need of the data platform and the other dependencies,” SentinelOne co-founder and CEO Tomer Weingarten told CRN this week. While other vendors require a “long list of prerequisites” before deploying AI is possible, “I think what we have done with Athena is to say, ‘Look, security and AI should be everywhere, and it should be easy—and you should just, [with] one click, connect to your entire security ecosystem,” Weingarten said.

Cyera

At RSAC 2025, fast-growing data security startup Cyera announced it has hired an industry veteran, Dave Rogers, as channel chief in a move by the company to accelerate its work with partners. Rogers, who had most recently been at Palo Alto Networks, said in an interview with CRN that he’s coming aboard fast-growing Cyera to help partners capture the massive opportunities around enabling AI adoption for their customers. “There’s no limit to the amount of opportunity for partners when they’re ingrained in the customer’s most important project,” Rogers said. Cyera co-founder and CEO Yotam Segev told CRN that bringing aboard Rogers is major validation for the partner opportunities ahead. “I think that he will position us in a much stronger way within the channel community for the next phase of growth,” Segev said.

Malwarebytes

Malwarebytes said at RSAC 2025 that it has launched several new channel initiatives including a trial option for its ThreatDown OneView platform for MSPs. The 15-day trial covers “the entire technology stack” within the ThreatDown portfolio of EDR and MDR offerings and is “an attempt to get [MSPs] that are passive and just browsing to engage” with ThreatDown, Malwarebytes founder and CEO Marcin Kleczynski told CRN. “We’ve seen some great engagement already,” Kleczynski said. “Within the first couple of weeks of a soft launch, the volumes effectively tripled in terms of people that want to contact us and get a demo.” Meanwhile, other channel initiatives launched by the vendor included a new partner certification program focused on partner sales and technical certifications, Malwarebytes said.

Akamai Technologies

Akamai Technologies debuted its latest protections for AI-powered applications at RSAC 2025 Tuesday with the launch of its Firewall for AI, providing “multilayered” defense against attacks and abuse targeting AI apps. The protections can block inputs by adversaries as well as unauthorized queries and data scraping on a large scale, Akamai said. Other key capabilities include real-time detection of AI threats, alignment with compliance requirements and “flexible” deployment options, according to the company. When it comes to threats targeting AI apps, “it’s not the normal firewall or API security rules” that come into play, Akamai co-founder and CEO Tom Leighton told CRN this week. “It’s different kinds of exploits are taking place. So you need a different kind of intelligent firewall for AI.”

Blackpoint Cyber

At RSAC 2025, Blackpoint Cyber unveiled what it’s calling a “unified security posture and response” offering with the launch of its new CompassOne platform. Blackpoint Cyber founder and CEO Jon Murchison told CRN that said the platform builds on the company’s MSP-focused managed detection and response (MDR) offering, with new features for security posture rating and cloud posture along with revamped capabilities for existing tools. One net-new capability that Blackpoint Cyber will introduce with CompassOne is its security posture rating system, Murchison said. The letter-grade rating system will assess an organization using key cybersecurity frameworks and will demonstrate the organization’s progress over time on achieving security maturity and compliance, according to Blackpoint.

Huntress

Huntress unveiled a pair of major product updates at RSAC 2025 including an enhanced version of its Managed Identity Threat Detection and Response (ITDR) offering that features updates such as its new “rogue apps” capability. The feature provides proactive protection against threats to OAuth applications that are installed in Microsoft 365 environments, the company said. Other new capabilities in Huntress’ Managed ITDR include “unwanted access” that detects and shuts down compromised identities, as well as “shadow workflows” that monitors inbox and email forwarding rules to detect malicious rules, according to the vendor. Meanwhile, Huntress also unveiled general availability of its Managed SIEM offering, which has also been enhanced with additional log source integrations and increased capabilities around compliance, the company said.

Veza

At RSAC 2025, identity security vendor Veza announced raising US$108 million in a Series D round of funding aimed at accelerating its growth. The funding was led by New Enterprise Associates and included a number of other backers, including new investors Atlassian Ventures, Workday Ventures and Snowflake Ventures. Veza now has a valuation of US$808 million in connection with the new funding, the company said. Key capabilities on the Veza platform include tools for visualization of entitlements and identity security risks, as well as the ability to monitor and control entitlements.

Upwind

Cloud security vendor Upwind said at RSAC 2025 that it has acquired Nyx Security, a startup that focuses on providing threat detection at the application layer, the company said. In a post, Upwind CEO Amiram Shachar said that Nyx offers technology that “tracks which functions are truly executing in memory, allowing detection of exploited vulnerabilities and behavioral anomalies at the moment they occur with surgical precision.” Upwind said the capabilities will expand the company’s runtime cloud security platform that already includes cloud workload protection and cloud detection and response as well as CSPM (cloud security posture management) and CIEM (cloud identity entitlement management).