Security stocks soar as SolarWinds hack expected to lead to expensive investigations

FireEye stock initially plunged after disclosing its hack, but soared nearly 20% in Friday trading, after analysts consistently noted that the hack will lead to a desperate need for forensic investigations and increase attention on prevention. While it is relatively simple for engineers to discover if the hackers used the vulnerability on a specific network, it takes a lot of work to investigate what they may have done after gaining entry, and companies like FireEye and CrowdStrike CRWD, +10.06% are expected to be busy.

“FireEye stock took the hit when they were first to disclose, but other companies and agencies running layers of cybersecurity and with a lot of security analysts did not find the attack until FireEye found it. We think that will benefit the FireEye incident-response business,” JP Morgan analysts wrote Friday, while adding that Solarwinds said it is deploying Crowdstrike’s Falcon Endpoint Protection Platform in response to the hack, which “likely will benefit CrowdStrike marketing efforts.”

CrowdStrike shares reached record intraday highs Friday, gaining as much as 10%.

It is believed that about 18,000 businesses and agencies were vulnerable to the attack, with even tech stalwart Microsoft Corp. MSFT, -1.34% admitting Thursday that its network was breached. A high-profile attack of that breadth is expected to factor in when companies determine their budgets for 2021.

“The breach comes at a crucial time when IT budgets are being settled
for the upcoming year for many companies,” Truist analysts wrote Friday. “We see the already-high awareness around security, driven by the remote work shift, as being accentuated by recent headlines and the realization that, even with the threat of state-level actors, the onus of securing the digital corporate environment falls on individual corporations themselves rather than the government.”

Truist raised its price targets on three security companies in response: CrowdStrike, which went to $200 from $180; firewall specialist Palo Alto Networks Inc. PANW, +7.32%, which was raised to $365 from $305; and Varonis Systems Inc., which increased to $160 from $145. Palo Alto Networks shares were trading more than 5% higher Friday, while Varonis stock jumped more than 10%.

UBS analysts also said that CrowdStrike and Palo Alto Networks were likely short-term beneficiaries, but added CyberArk Software Ltd. CYBR, +14.98% and ZScaler Inc. ZS, +4.92% to their list of targets. CyberArk shares gained more than 10% in Friday trading, while ZScaler shares were trading more than 4% higher.

Overall, the ETFMG Prime Cyber Security ETF HACK, +3.62% was more than 3% higher in Friday afternoon trading, led by double-digit percentage gains for FireEye, Qualys Inc. QLYS, +14.79%, Tenable TENB, +16.75%, Varonis and CyberArk. The basket of security stocks has gained 36.2% so far this year, as the S&P 500 index SPX, -0.76% has increased 15.2%.