Axonius Acquires Cynerio in $100 Million to Support Medical Cybersecurity

Cyber asset intelligence company Axonius announced that it has acquired Cynerio. This is A provider of medical device cybersecurity solutions, with a guarantee of $100 million in cash and stock. Furthermore, the acquisition is Axonius’ first acquisition. This is signaling a clear strategic advance into the rapidly growing and vulnerable Internet of Medical Things (IoMT) market.

The combination of strength of Axonius in asset discovery and risk remediation across IT, cloud, and also SaaS ecosystems; That too with Cynerio’s strengths in passive monitoring and clinical network protection, this will eventually create a complete security platform. That can address a common gap that has left healthcare organizations too often open to unmanaged, unseen risks.

Cybersecurity Risks for Healthcare Are Increasing

More and more in healthcare is dependent on connected medical devices. Whether it’s infusion pumps, patient monitors, MRI machines, or connected lab analyzers. These devices are essential for patient care. But have outdated firmware, a proprietary communication protocol, and aren’t capable of hosting the modern security agent. This makes them targets for ransomware, lateral movement, and supply chain attacks. 

So, the cost of these attacks has increased. In a 2025 Healthcare IT & Security Report, 53% of hospitals report experiencing a medical device-related cyber incident in the past 12 months. In addition to that, the average breach cost in healthcare was $10.93 million per incident. This is the highest average cost incurred across all industries. Eventually, in many instances, attacks caused temporary suspensions of entire clinical systems, causing delays in surgical procedures and patient care.

According to Dean Sysman, co-founder and CEO of Axonius, it is a long-standing blind spot:

“Hospitals have a huge digital security blind spot; the devices that are very important for patient care have been completely invisible to any cybersecurity teams. We can now provide full visibility across their IT and clinical environments. That too without compromising patient safety,” Sysman said.

What Cynerio Is Adding to Axonius:

Cynerio, founded in 2017 in Israel. It is purely focused on cybersecurity for healthcare. Basically, it is developing technology to understand and profile medical devices, advise on anomalous behavior, and isolate high-risk items. Cynerio maintains an agent-less and non-intrusive approach to endpoint security. That is built to work safely as part of the clinical workflow, ensuring there is no downtime. Cynerio’s platform features:

• Real-Time Device Monitoring: Real-Time Device Monitoring leverages passive traffic analysis. To manage reporting of accurate device identification and allow the detection of threats in real time.
• Risk Scoring and Micro-Segmentation: helps IT teams isolate vulnerable devices; while being consistent with clinical workflows and without disrupting the hospital
• Compliance Considerations: helps meet the standard requirements for meeting HIPAA and FDA medical device cybersecurity policies. And other compliance standards operating in a rapidly changing regulatory landscape.

Adding these capabilities will provide the Axonius platform with complete asset intelligence. Supporting visibility over endpoints, cloud workloads, SaaS apps, identities, and also now non-consumer IoMT devices. Together as a company, we can serve the emerging demand for consolidated visibility and comprehensive risk remediation in healthcare.

Expert Perspective on the Acquisition

Industry analysts view the acquisition as an inevitable move given rising healthcare threats. Frank Dickson, Group VP of Security & Trust at IDC, commented:

“Healthcare organizations are under siege from ransomware and supply chain attacks, and IoMT devices have been one of the least visible and least protected asset categories. This acquisition enables Axonius to deliver the unified visibility that zero-trust strategies demand.”

The sentiment is echoed by Gartner’s 2025 Cyber-Physical Systems (CPS) report, which predicts that 70% of healthcare security investments in the next two years will focus on IoMT visibility and risk management, compared to just 25% in 2022.

Industrial Ramifications and Competitive Dynamics

The Axonius, Cynerio acquisition is happening in an environment where healthcare cybersecurity has moved up into the top tier of boardroom priorities. Furthermore, as healthcare organizations quickly adopted connected devices, these organizations were faced with compliance and other regulatory requirements like OSHA, HIPAA, and new FDA guidance for Cybersecurity for medical devices. This new compliance framework is causing significant operational challenges for hospital IT and security teams, with time and resources at the top of the heap.

Axonius intends to integrate Cynerio’s many IoT critical security capabilities directly into its already established Asset Intelligence Platform, so that Axonius can provide a unified visibility for IT and clinical devices. This is a pivotal move to address one of the largest operational challenges hospitals face when developing a risk management strategy. The a traditional gap in visibility and responsibilities between the hospital IT and biomedical engineering teams.

The hospital IT teams can exploit a unified platform to identify vulnerabilities faster, implement policies for micro-segmentation, and eventually consolidate their risk reporting requirements from auditors and regulators.

Acquiring Cynerio also positions Axonius deliberately in opposition to security vendors that have established their product roadmap for the medical device vertical or across the totality of the IoT ecosystem. Vendors like Medigate by Claroty and Armis Security have created a meaningful presence in healthcare device visibility. Eventually, Axonius currently has procurements with IT and Cloud/SaaS assets with the intent to sell to enterprise security leaders a single-pane-of-glass control to include greater visibility of their healthcare devices.

About Axonius and Cynerio 

Axonius’s core platform enables organizations to discover and classify every asset they manage, find gaps in security coverage, and also automate remediation playbooks. Axonius’s customers include Fortune 500 enterprises, financial services, technology providers, and government agencies. The acquisition of Cynerio marks an entry into the specific branch of healthcare cybersecurity, elevating Axonius’s relevance to critical infrastructure and regulated industries. 

Cynerio built its reputation on passive and non-disruptive monitoring of medical devices that map explicitly to the operational realities of hospitals and healthcare systems. Its technology allows security teams to profile medical devices, recognize behavioral anomalies, and take risk-based actions, without impacting patient care. Cynerio’s customers include large health systems in North America, Europe, and Asia-Pacific. 

Implications of the Acquisition for Healthcare Security 

This acquisition will help accelerate Axonius’s push into healthcare and improve its competitive position, with analysts believing that healthcare will continue to be one of the most sought-after verticals for cybersecurity vendors as it tries to manage legacy infrastructure, and its regulations, and data are considered toxic assets driving attack average cost of a breach in health sector is $10 million. 

With 30,000 IoMT devices predicted to exceed 50 billion connections globally by 2030 (International Data Corporation, 2025), the healthcare provider community will need better asset visibility and automated response capabilities to prevent attacks that can affect patient care. The combined Axonius – Cynerio platform could be instrumental in aiding hospitals in moving from a reactive cybersecurity posture to proactive risk management. 

Axonius also noted that it would seek more acquisitions in the future in order to expand its asset intelligence coverage beyond healthcare for additional cyber-physical systems that require visibility, including industrial IoT and critical infrastructure.

To participate in upcoming interviews, please reach out to our CyberTech Media Room at sudipto@intentamplify.com.