Cyber funding surges
Cybersecurity financing jumped 33% YoY to $3.8B in Q1 2026 with 108 M&A deals and four new unicorns — investors are plowing capital into layered security that insurers and SIU teams now need. That matters because AI‑powered account takeover attacks are rising, pushing demand for real‑time monitoring and multi‑layered controls across payments and portals. (globenewswire.com) (fintechweekly.com)
Momentum Cyber’s Q1 market review records 211 financing rounds and only $2.6 billion in disclosed M&A value from 19 deals, while private equity accounted for roughly 45% of deal flow in the quarter. (momentumcyber.com) AI‑security themes concentrated the largest raises in Q1, with investor allocations skewing to agentic SOC, cloud protection, and risk‑and‑compliance tooling according to Momentum Cyber’s sector breakdown. (momentumcyber.com) Agentic SOC startup Torq closed a $140 million Series D that lifted its valuation to $1.2 billion, underscoring investor bets on automating SOC workflows. (bloomberg.com) Belgian app‑security firm Aikido reached a $1 billion valuation after a $60 million Series B to expand autonomous application‑security capabilities for engineering teams. (securityweek.com) Israeli cloud‑security scale‑up Upwind announced a $250 million round valuing the company at about $1.5 billion for real‑time cloud protection, and autonomous red‑team specialist XBOW reported a $120 million Series C that industry outlets say pushed it past the $1 billion mark. (timesofisrael.com (i-hls.com) Insurer consolidation of cyber capability accelerated in Q1, with Zurich’s agreed £8.1 billion takeover of Beazley signaling carriers’ appetite to internalize cyber underwriting, incident response and claims engineering. (securityweek.com) Platform‑level risk programs tied to cloud posture are expanding: Google Cloud’s Risk Protection Program now includes insurer partners such as Chubb and Beazley to link security telemetry to pricing and loss control. (cyberinsurancenews.org) Federal Reserve guidance and industry researchers highlight account‑takeover as a persistent, AI‑amplified attack vector and recommend layered, continuous monitoring rather than rule‑based login checks alone. (frbservices.org) Major carriers and claims vendors are publicly advertising SIU modernization—Chubb describes an SIU built on “advanced technology, investigative tools and data‑driven models,” while claims integrators and advisors urge live data access and continuous triage to scale investigations. (chubb.com (sedgwick.com)
