Why we’ve acquired Hardenize, and what this means for our customers

Today, I’m delighted to announce that Red Sift has acquired global Attack Surface Management (ASM) innovator, Hardenize. This is one of the most significant moves in Red Sift’s history to date, and means we can now enrich and extend our leading security products. Alongside protecting email via the deployment of widely supported security standards, we are now in a position to offer similar protections to important threat vectors such as services provided over the web.

Together, we will redefine Attack Surface Management (ASM)

It’s no secret that email security remains one of the greatest challenges for businesses on the internet. We pride ourselves in offering excellent connected solutions for these challenges, however, we know that email is one of many vectors that hackers will actively look to exploit. From email and domains to web applications and the network perimeter, attackers will take advantage of any and all vulnerabilities across the ever-expanding attack surface. So, rather than treating key email security risks individually, organizations must have a comprehensive understanding of and visibility into any and all assets, as well as the ability to secure these using our award-winning remediation solutions based on globally-recognized standards and protocols. 

Hardenize is unique because they start with the hard problems first. It’s impossible to manage your attack surface without first finding it. They combine best-in-class asset discovery with deep inspection of an organization’s security posture across all public-facing services from email to web and nameservers. Having created the industry-standard SSL Labs in the prior decade, the team has deep expertise in evaluating technical risks. Hardenize brings this approach up to date with the complex discovery and management challenges facing organizations today. We exist to help our customers see, solve, and secure, and combining Hardenize with our existing solutions allows us to address the entire lifecycle around an organization’s digital footprint from discovery to issue resolution. 

“This is a significant moment in the fight against digital pollutants on the Internet. Modern cyber resilience is built on a foundation of good cyber hygiene. Hardenize adds best-in-class security to allow organizations to work out what they’re doing well and need to improve in some really critical areas of core protections. This adds to Red Sift’s suite of gold-standard solutions. I’m excited to see how this improves the offerings available for enterprises looking to secure their infrastructure and digital ecosystem.”

Ciaran Martin, NCSC founder and former Chief Executive, and Red Sift Special Advisor

How does this improve Red Sift’s existing solution set?

When it comes to existing ASM solutions, most start and stop with port scanning. This ignores the vast body of protocol-level security that is poorly understood and incompletely deployed. It also ignores messaging and the systems that employees use to engage across the internet. Our view is that all of it forms a continuous attack surface that needs to be discovered and hardened against adversaries. Hardenize was one of the only ASM solutions to detect vulnerabilities in email configuration that could lead to impersonation and weaknesses in TLS that could lead to interception. 

Today’s acquisition provides customers with the necessary tools to ensure ongoing compliance with email and web security protocols, hardening their attack surface on all fronts. Hardenize’s deep and continuous knowledge of key security and network standards, protocols, and configurations, paired with Red Sift’s sophisticated remediation capabilities and gold-standard security products, enables customers to gain complete control of their entire attack surface for the first time. 

“We’re excited to join Red Sift in bringing this best-in-class security solution to the market. Hardenize’s ability to align organizations’ digital assets to recognized security frameworks and standards complements Red Sift’s advanced email security capabilities to provide a single solution that protects organizations from being vulnerable to attackers.”

Hardenize CEO and SSL Labs creator Ivan Ristic.

Register interest for our exclusive Experts Discussion

To learn more about today’s acquisition, register your interest for our exclusive Experts Discussion below. I will be joined by Ivan Ristic, Hardenize CEO and SSL Labs creator, and other industry experts to explore what this move means for the future of digital resilience and attack surface management.

PUBLISHED BY

Rahul Powar

13 Oct. 2022

SHARE ARTICLE:

Categories

Recent Posts

VIEW ALL
BEC

The threat of Business Email Compromise in US healthcare

Jack Lilley

Executive summary: Business Email Compromise is siphoning billions from U.S. healthcare by exploiting human trust instead of software flaws. Spoofed or hijacked messages authorize fraudulent payments, spark ransomware, and expose patient data—causing crippling financial, operational, and compliance damage. Deploying DMARC, MFA, and rigorous multi-person payment checks is now critical. 3 key takeaways Business Email…

Read more
Email

Cloudflare selects Red Sift as a preferred partner to provide DMARC and…

Rebecca Warren

AI-generated email attacks are rapidly growing in scale and sophistication, demanding stronger defenses from at-risk organizations. Starting today, Red Sift is excited to announce a new strategic partnership with Cloudflare, the leading connectivity cloud company, to deliver its market-leading email security application, Red Sift OnDMARC, to a broader global audience.  Today’s alignment enhances Cloudflare’s…

Read more
Cybersecurity

New Zealand moves to mandate DMARC enforcement

Jack Lilley

Executive summary: New Zealand’s Secure Government Email Framework mandates DMARC at p=reject—plus hard-fail SPF, universal DKIM, enforced MTA-STS, and TLS-RPT—by October 2025. The rules replace SEEMail, curb soaring phishing losses, and will affect every organization that emails the public sector. Key takeaways: The New Zealand Government has recently published the Secure Government Email (SGE) Common…

Read more
BEC

DMARC: The best ROI for your organization

Jack Lilley

Executive summary: Implementing DMARC delivers one of the clearest, fastest returns on investment in email security. By authenticating outgoing mail and blocking spoofed messages, DMARC cuts the direct costs of phishing and Business Email Compromise, safeguards brand reputation, and boosts deliverability—ultimately driving revenue and trimming operational workload. Key takeaways: Email is a critical communication tool for…

Read more