2026-03-24 00:00
CrowdStrike is enhancing its cybersecurity services with the introduction of Flex for Services, extending the Falcon Flex model to offer greater flexibility. 🌐 This shift allows organizations to access expert-led services tailored to evolving security needs without rigid hours-based models. The Zero Dollar Flex Fund also helps strengthen incident readiness. 🔒 Flex for Services ensures quicker responses to changing threats, enabling businesses to adapt their security strategies effectively....
Source: CrowdStrike Blog
JJ Cranford
2026-03-24 00:00
🚀 CrowdStrike has launched agentic MDR and SOC Transformation Services to enhance cybersecurity operations. In an era where threats move at machine speed, many traditional systems struggle to keep up. Legacy tools and manual workflows are inadequate, creating a divide among organizations. Agentic MDR combines automation and expert oversight, ensuring effective breach response while modernizing security operations. With a 1-minute median time to contain threats, businesses can achieve faster...
Source: CrowdStrike Blog
Chris Bowie - JJ Cranford
2026-03-24 00:00
🚀 CrowdStrike has launched Falcon Data Security, a solution aimed at protecting sensitive data across diverse environments. This tool helps organizations identify what data is critical and tracks its movement in real time, allowing teams to prevent data theft. Falcon Data Security integrates advanced classification and visibility, streamlining data protection from a single console. #DataSecurity #CloudSecurity #CyberProtection #CrowdStrike #DataLossPrevention
Source: CrowdStrike Blog
Luke Hunsinger
2026-03-23 00:00
🚀 CrowdStrike is enhancing its Falcon Next-Gen SIEM to support third-party EDR solutions, starting with Microsoft Defender. This allows organizations to modernize their security operations without needing to replace existing endpoint agents. 🔒 As cyber threats evolve, security teams face challenges with fragmented systems. The integration aims to streamline detection and response, addressing issues like blind spots and delayed responses. 💡 With features like AI-native threat detection and...
Source: CrowdStrike Blog
Paola Miranda
2026-03-23 00:00
🌐 As organizations accelerate AI adoption, new security challenges arise from AI agents and shadow AI. Traditional security measures struggle to protect these expanding attack surfaces. 🔍 CrowdStrike is stepping up with new innovations in their Falcon® platform, enhancing AI detection and response across endpoints, SaaS, and cloud environments. 🛡️ These advancements aim to close the visibility and governance gap, allowing companies to confidently embrace AI development. #CyberSecurity #AI...
Source: CrowdStrike Blog
John Gamble
2026-03-20 00:00
🚨 A recent investigation by CrowdStrike has uncovered a supply chain compromise involving the popular GitHub Action, aquasecurity/trivy-action. This vulnerability scanner, widely used in CI/CD pipelines, was found to have 76 of its 77 release tags compromised, replaced with a credential-stealing payload. The malicious code operates silently, allowing workflows to appear normal. Aqua Security has confirmed the breach and has removed all malicious artifacts from their repositories. CrowdStrike...
Source: CrowdStrike Blog
Adam Cardillo - Ben Ellett - Travis Lowe - Radu-Emanuel Chiscariu
2026-03-20 00:00
🚨 On March 4, 2026, Europol announced the takedown of Tycoon2FA, a phishing-as-a-service platform that helped bypass multifactor authentication. Law enforcement from six countries seized 330 domains related to this cyber threat. Disrupting such platforms is crucial for cybersecurity but challenging, as adversaries often regroup quickly. CrowdStrike noted a temporary drop in Tycoon2FA activity, but there has been a resurgence in cloud compromises. #Cybersecurity #Phishing #Tycoon2FA #Europol...
Source: CrowdStrike Blog
Falcon Complete Team - Counter Adversary Operations
2026-03-19 00:00
🚀 Developers face new challenges in securing AI applications as they transition to mainstream use. CrowdStrike Falcon® AI Detection and Response (AIDR) now integrates with NVIDIA NeMo Guardrails, enhancing protection for AI agents against runtime attacks. This partnership helps ensure AI tools remain within business goals and compliance requirements. NVIDIA NeMo Guardrails offers programmable constraints, content safety models, and multilingual support. Together, they enable organizations to...
Source: CrowdStrike Blog
Bruce McCorkendale - Rob Truesdell
2026-03-18 00:00
🚀 CrowdStrike is unveiling new innovations at Fal.Con Gov 2026 to enhance national security and cyber defense for government systems. Their Falcon® platform aims to empower agencies to modernize operations while ensuring compliance and trust. With challenges from ransomware and advanced adversaries, timely action is crucial. 🛡️ Introducing Falcon Flex, a new model that simplifies procurement and accelerates responses to evolving threats. This approach allows agencies to access the Falcon...
Source: CrowdStrike Blog
Karan Sondhi
2026-03-18 00:00
🚀 Exciting update for government agencies! The CrowdStrike Falcon Platform for Government now includes Falcon for XIoT. This addition enhances security by providing visibility and protection for connected assets across OT and IT environments. Federal agencies can now better protect critical infrastructure, such as power grids and public health systems, from modern threats. Falcon for XIoT helps identify and address vulnerabilities effectively. Learn more about this crucial step in securing...
Source: CrowdStrike Blog
Adina Schoeneman
2026-03-12 00:00
🚀 Discover how CrowdStrike Charlotte AI is transforming security operations for businesses! Charlotte AI functions as an embedded security analyst, enhancing alert triage and threat investigation for security teams struggling with rising alert volumes. Organizations like Blackbaud have reported a 3x improvement in mean time to resolve (MTTR) by integrating this AI into their workflows, allowing analysts to focus on critical tasks. Learn more about how Charlotte AI is changing the game!...
Source: CrowdStrike Blog
Scott Wotring
2026-03-11 00:00
🚀 The Falcon macOS Sensor has launched its Enhanced Network Visibility feature in version 7.29 and later. This new capability improves insight into network traffic on macOS endpoints, enriching process behavior models. It identifies application protocols and analyzes both TLS and HTTP traffic, enhancing threat detection and hunting. Utilizing Apple-native content filter APIs, it minimizes network performance impact while maximizing detection accuracy. An exciting addition is JA4...
Source: CrowdStrike Blog
Ash Leslie - Colton Terrace - Chris Kent
2026-03-10 00:00
🔒 March 2026 Patch Tuesday has seen Microsoft address 82 vulnerabilities, including eight critical ones. Among these, two were publicly disclosed. The primary risk types include elevation of privilege (56%), remote code execution (20%), and information disclosure (12%). Windows received the most patches (48), followed by Azure (13). #Microsoft #PatchTuesday #CyberSecurity #Vulnerabilities #TechUpdate
Source: CrowdStrike Blog
Falcon Exposure Management Team
2026-03-09 00:00
🚀 CrowdStrike is enhancing its Falcon platform to protect medical devices in healthcare environments. This move addresses the growing cybersecurity threats targeting healthcare organizations. 🔍 With over 750 reported breaches in 2026, the need for robust security is critical. The Falcon for XIoT will provide continuous visibility and protection for connected healthcare devices, ensuring patient safety. 💻 The platform will also automate asset visibility, helping to identify legacy devices and...
Source: CrowdStrike Blog
Adina Schoeneman
2026-03-06 00:00
🚀 Exciting news from CrowdStrike! Falcon Next-Gen SIEM now simplifies onboarding with sensor-native log collection. This new deployment automates log collector installation, addressing data onboarding challenges that often slow down organizations. By using the Falcon sensor, organizations can efficiently manage log collectors without the need for separate infrastructure. This enhancement allows faster onboarding of external log sources while ensuring centralized governance. With this...
Source: CrowdStrike Blog
Arfan Sharif
2026-03-02 00:00
🚨 CrowdStrike has received NCSC CIR Assurance for its UK cyber incident response services. This certification confirms their compliance with rigorous standards for incident handling and operational performance. As cyber threats rise, the NCSC CIR certification assures customers of CrowdStrike's capability to manage serious incidents effectively. This recognition highlights the importance of operational assurance in strengthening resilience across Europe. #CyberSecurity #IncidentResponse...
Source: CrowdStrike Blog
Max Gebhardt
2026-02-26 00:00
🚀 CrowdStrike has launched FalconID, a phishing-resistant MFA solution integrated into its Falcon platform. This advancement targets modern identity threats where adversaries exploit legitimate identities to bypass security measures. Traditional tools are not equipped to handle such sophisticated attacks. FalconID offers seamless, FIDO2-based authentication, using real-time risk analysis for better security decisions. This means fewer unnecessary steps and a frictionless experience for users....
Source: CrowdStrike Blog
Ryan Terry
2026-02-24 00:00
🌐 The CrowdStrike 2026 Global Threat Report highlights a worrying trend in cybersecurity. In 2025, adversaries utilized AI tools and trusted access paths to evade detection. 🔍 The report reveals that the average eCrime breakout time dropped to just 29 minutes, with 89% more attacks from AI-enabled adversaries compared to 2024. 💡 Organizations must stay informed about these evolving tactics to better prepare for potential threats. Learn more: [Link to download] #Cybersecurity #ThreatReport #AI...
Source: CrowdStrike Blog
Adam Meyers
2026-02-23 00:00
🚨 Typosquatting is a growing threat in the cyber landscape. Threat actors register misspelled domains of legitimate organizations to deceive users. These domains can be used for phishing, credential harvesting, and malware delivery. Recent insights reveal that the tactics used in these campaigns are becoming increasingly sophisticated, making them harder to detect. Organizations need to be aware of these risks and strengthen their defenses against brand impersonation. #CyberSecurity...
Source: CrowdStrike Blog
Alen Peric
2026-02-18 00:00
Insider threats are a major concern for organizations, involving malicious actions, negligence, or accidental errors that can harm assets and reputation. Understanding user behavior and detecting anomalies early is essential for identifying these threats. CrowdStrike offers tools like Falcon Data Protection and Next-Gen SIEM to help organizations detect and respond quickly through user behavior analytics and risk scoring. 📊🔍 The article outlines the key features of these dashboards, including...
Source: CrowdStrike Blog
Radu-Emanuel Chiscariu - Emilian Duca
2026-02-18 00:00
🚀 Introducing "AI Unlocked: Decoding Prompt Injection," an interactive challenge by CrowdStrike! This hands-on simulation helps security teams understand prompt injection attacks. Participants navigate through three virtual rooms, using prompt injection techniques to unlock secret phrases. 🛡️ Starting from basic tactics, players face advanced filtering and real-time monitoring as they progress. This challenge aims to enhance knowledge of AI security threats. #AIUnlocked #CyberSecurity...
Source: CrowdStrike Blog
John Gamble - Vanessa Villa
2026-02-12 00:00
🚀 Exciting news! CrowdStrike has been recognized as a Customers’ Choice in the 2026 Gartner® Peer Insights™ report for User Authentication. For the second year in a row, they achieved the highest number of verified reviews and 5-star ratings, totaling 129. 🌟 Their commitment to AI-powered identity security is reflected in a 96% willingness to recommend. Customers rated CrowdStrike highly for product capabilities and deployment experience, highlighting effective real-time detection of identity...
Source: CrowdStrike Blog
Ryan Terry
2026-02-11 00:00
Unlocking SOC automation can be challenging for many teams. 🤔 CrowdStrike's Falcon Fusion SOAR is designed to support security teams at any stage of their automation journey. It helps organizations start with simple tasks and scale to more complex workflows over time. 🔍 From automating password resets to advanced AI-driven processes, Falcon Fusion SOAR provides a unified system for building and running workflows. This approach allows teams to evolve from basic automation to intelligent,...
Source: CrowdStrike Blog
Paola Miranda
2026-02-10 00:00
🔒 Microsoft has released its February 2026 Patch Tuesday update, addressing 59 vulnerabilities. Among these, six are actively exploited, with three being publicly known. The update includes five Critical vulnerabilities. The primary risk types involve elevation of privilege (42%), remote code execution (20%), and spoofing (14%). Windows received the most patches, totaling 32. #CyberSecurity #PatchTuesday #MicrosoftUpdates #Vulnerabilities #TechNews
Source: CrowdStrike Blog
Falcon Exposure Management Team
2026-02-10 00:00
Adversaries in cybersecurity are evolving, using AI to enhance their tactics. To counter this, CrowdStrike emphasizes a partnership between human analysts and AI systems. 🤖👥 Their adaptive AI is continuously guided by elite defenders who provide real-time insights, ensuring accurate threat detection. This collaboration creates a robust feedback loop that enhances security measures. CrowdStrike processes trillions of security events daily, with human interpretation refining the data for...
Source: CrowdStrike Blog
Chris Bowie - Grace Ural - Lucia Stanham
2026-02-09 00:00
🌟 CrowdStrike has been recognized as a Customers' Choice in the 2025 Gartner® Voice of the Customer for External Attack Surface Management! This marks the second consecutive year for this distinction. Their Falcon® Exposure Management tool effectively identifies assets and prioritizes vulnerabilities, helping organizations manage risks more efficiently. With an impressive overall rating of 4.7 out of 5 stars and a 93% willingness to recommend, customer feedback highlights the platform's...
Source: CrowdStrike Blog
Rona Kedmi
2026-02-05 00:00
Web shells are a serious threat to Linux servers, allowing adversaries to gain remote access and evade detection for extended periods. 🛡️ CrowdStrike has enhanced its Falcon® sensor for Linux to better detect PHP web shells, including pre-existing and obfuscated versions. This includes the "On write script file visibility" feature, which identifies malicious scripts as they are created. 📈 In just three months, this feature helped detect 492 web shells, improving response capabilities for...
Source: CrowdStrike Blog
Falcon Adversary OverWatch
2026-02-04 00:00
🔍 OpenClaw, an AI super agent, offers significant productivity benefits but raises serious security concerns. This open-source tool can connect to LLMs and execute tasks autonomously. However, if misconfigured, it could become a backdoor for adversaries, risking sensitive data and system integrity. CrowdStrike Falcon® can help security teams identify and mitigate risks associated with OpenClaw deployments. Join the global broadcast on Feb. 10 to learn more about the implications of OpenClaw....
Source: CrowdStrike Blog
Elia Zaitsev
2026-02-03 00:00
🚀 CrowdStrike Falcon has achieved a perfect 100% score in SE Labs' latest ransomware test, showcasing its exceptional detection and protection capabilities. This rigorous evaluation involved 649 malware files and simulated attacks from known adversarial groups, demonstrating the platform's effectiveness against real-world threats. With 78% of security leaders reporting ransomware attacks, strong defense is crucial. Falcon's performance has earned it SE Labs' AAA Award for Advanced Security...
Source: CrowdStrike Blog
Brad Moon
2026-02-03 00:00
🌟 CrowdStrike has been named a Customers’ Choice in the 2026 Gartner Peer Insights™ report for Application Security Posture Management Tools. This recognition is based on user reviews. CrowdStrike Falcon® ASPM received top ratings for product capabilities and deployment experience. As applications evolve, organizations rely on its insights to navigate complex security landscapes. With Falcon ASPM, security teams can effectively manage risks across applications, cloud, and endpoints,...
Source: CrowdStrike Blog
Bhavna B. Sehgal
2026-02-02 00:00
AI is transforming business operations, but it also brings new security challenges. Leaders from WEX, Med Center Health, and Genesys share how they are using CrowdStrike to secure their AI systems. They emphasize the need for visibility, identity control, and continuous monitoring to protect sensitive data and maintain innovation. CrowdStrike Falcon® offers a unified solution to safeguard AI across various environments. #CyberSecurity #AI #CrowdStrike #DataProtection #Innovation
Source: CrowdStrike Blog
Scott Wotring
2026-01-30 00:00
AI agents are reshaping enterprise operations, but their flexibility introduces security risks known as agentic tool chain attacks. 🔍 These attacks target the reasoning layer where AI agents decide which tools to use. By manipulating language and context, attackers can cause agents to leak data or execute unauthorized actions. Centralized architectures, like the Model Context Protocol (MCP), can amplify these risks, as a compromised server may affect multiple agents. Types of attacks include...
Source: CrowdStrike Blog
Vanessa Villa
2026-01-29 00:00
LABYRINTH CHOLLIMA has now split into three distinct adversaries: GOLDEN CHOLLIMA, PRESSURE CHOLLIMA, and the core LABYRINTH CHOLLIMA group. GOLDEN and PRESSURE CHOLLIMA focus on targeting cryptocurrency entities, while the core group remains dedicated to espionage against industrial, logistics, and defense sectors. Each subgroup operates independently but utilizes shared tools, highlighting centralized coordination within the DPRK cyber ecosystem. This evolution reflects a significant shift...
Source: CrowdStrike Blog
Rob Bruner
2026-01-28 00:00
🎉 Exciting news! CrowdStrike has been recognized as a Customers’ Choice in the 2026 Gartner® Voice of the Customer for Endpoint Protection Platforms. With the highest number of 5-star ratings and a 97% Willingness to Recommend score, CrowdStrike stands out in the EPP landscape. This marks their sixth consecutive recognition since the report began. Customers across various industries praise the Falcon® platform for its AI-native security and seamless deployment. #CrowdStrike #CyberSecurity...
Source: CrowdStrike Blog
Chris Prall
2026-01-28 00:00
Data Protection Day 2026 highlights the shift in data protection from compliance to resilience. As cyber threats evolve, organizations must adapt to new realities shaped by AI and remote work. The increase in eCrime and identity abuse calls for stronger security measures beyond traditional compliance. Reflecting on these changes is crucial for ensuring data protection meets today's challenges. 🔒🌐 #DataProtectionDay #CyberSecurity #AI #Resilience #DataPrivacy
Source: CrowdStrike Blog
Drew Bagley - Christoph Bausewein
2026-01-21 00:00
🔒 USB drives pose significant security risks for organizations. These small devices can lead to data exfiltration and allow malicious threats to enter systems. Every connection brings the chance for sensitive information to leave or harmful software to infiltrate. Traditional security tools often fail to tackle both sides of this issue. Recent reports highlight how adversaries exploit USB drives for complex attacks, while insiders have used them to steal critical data, as seen in a notable...
Source: CrowdStrike Blog
Luke Hunsinger - Dana Larson
2026-01-16 00:00
The article "The Architecture of Agentic Defense: Inside the Falcon Platform" discusses the evolving landscape of cybersecurity. Adversaries are leveraging AI for faster, more sophisticated attacks, which creates a significant gap between them and defenders. Many security teams rely on fragmented systems that require manual effort to connect data. To effectively counter these threats, a new architecture is needed. This includes four key capabilities: semantic unification, autonomous...
Source: CrowdStrike Blog
Elia Zaitsev
2026-01-13 00:00
🚀 Exciting news! CrowdStrike plans to acquire Seraphic, enhancing browser security with zero-trust protections. This move aims to secure access to corporate resources across various browsers and devices, addressing a crucial blind spot for many organizations. Seraphic's technology will integrate with CrowdStrike’s Falcon platform, offering real-time visibility and control without needing to replace users' preferred browsers. Stay tuned for more updates! 🔒🌐 #CyberSecurity #CrowdStrike...
Source: CrowdStrike Blog
Michael Sentonas
2026-01-13 00:00
🔒 Microsoft has released its January 2026 Patch Tuesday update, addressing a total of 114 vulnerabilities. This includes 112 new CVEs and 2 updated advisories. Among the patched vulnerabilities are 3 zero-days, including one actively exploited and two publicly disclosed. The updates cover various exploitation techniques, with the majority focusing on elevation of privilege (50%) and remote code execution (19%). Microsoft Windows received the most patches (93), followed by Microsoft Office...
Source: CrowdStrike Blog
Falcon Exposure Management Team
2026-01-09 00:00
AI tool poisoning poses a significant risk to AI agents by exploiting tool descriptions to manipulate their behavior. 🛡️ This attack involves embedding hidden instructions in tool metadata, leading to unintended actions like data leaks or executing harmful code. For instance, an attacker might disguise malicious commands within a seemingly harmless tool description. Organizations are urged to enhance their defenses against such threats to protect sensitive data. 🔒 #AI #Cybersecurity...
Source: CrowdStrike Blog
Vanessa Villa