Cyberattacks and data breaches are increasing around the world and are often under-accounted for when conducting M&A due diligence. Organisations evaluating or executing an M&A transaction should undertake a comprehensive cybersecurity and data privacy due-diligence exercise to accurately assess their acquisition target’s level of security and uncover potential compromises.