2026-01-08 00:00
🚀 CrowdStrike is set to acquire SGNL, enhancing its Falcon® Next-Gen Identity Security. This move aims to improve continuous, context-aware authorization for all identities, including human, non-human, and AI agents. As identities expand with cloud adoption, the need for adaptive security is critical. The acquisition will enable dynamic privilege management, moving away from static policies. This approach will help secure access across SaaS and hyperscaler environments. #CrowdStrike...
Source: CrowdStrike Blog
Michael Sentonas
2026-01-06 00:00
🚨 CrowdStrike recently unveiled the Malware Analysis Agent, enhancing their threat detection capabilities. This agent achieved 100% detection in the 2025 MITRE ATT&CK® Enterprise Evaluations, showcasing its effectiveness in identifying advanced malware. Key features include automated analysis of malicious files and the ability to turn insights into proactive defenses. This innovation supports CrowdStrike’s mission to empower security teams against evolving threats. #CyberSecurity...
Source: CrowdStrike Blog
Rob Horrigan - Thuy Nguyen
2026-01-05 00:00
CrowdStrike is enhancing AI security models through collaboration with NVIDIA. 🤝 Their focus is on customizing NVIDIA Nemotron models for security workflows using the CrowdStrike Falcon platform. This integration allows for rigorous testing of large language models tailored for security tasks. A key innovation is the natural language-to-CQL translation model, improving query accuracy and performance by leveraging real-world data from security analysts. 📊🔍 This partnership demonstrates how...
Source: CrowdStrike Blog
Ioana Croitoru - Sophie Chau - Roxana Boriceanu - Chase Midler
2025-12-29 00:00
🚀 Exciting news for IT teams! CrowdStrike Falcon® for IT now offers turnkey automations to streamline security operations. These ready-to-use content packs automate common workflows, enhancing efficiency and endpoint security without the need for custom scripts. Key features include application resilience, file discovery, and Linux device control packs. Regular updates ensure continuous improvement and effectiveness. These automations help maintain application health and enforce consistent...
Source: CrowdStrike Blog
Michael Devins
2025-12-22 00:00
CrowdStrike is advancing cybersecurity with custom large language models (LLMs) designed to tackle emerging threats. 🔐 Their approach, highlighted in the CrowdStrike 2025 Global Threat Report, focuses on training LLMs using high-performance, distributed computing. This infrastructure is crucial to address the unique challenges in the cybersecurity landscape. 🛡️ CrowdStrike shared insights at the Google Cloud Next 2025 conference, where they were recognized as the 2025 Google Cloud Security...
Source: CrowdStrike Blog
Andrei Preda - Alexandru Dinu - Florian Stortz - Nathan Nusaputra - Catalin-Andrei Stan
2025-12-19 00:00
🌍 The AI era is transforming cybersecurity as organizations adopt AI for innovation while adversaries enhance their attack methods. CrowdTour 2026 aims to unite industry experts to discuss these changes. This global roadshow will feature insights on AI-driven defense, real-world customer stories, and collaborative strategies to prevent breaches. Key themes include: 1️⃣ Defeating AI-accelerated adversaries 2️⃣ Transforming Security Operations Centers (SOCs) 3️⃣ Governing and securing AI across...
Source: CrowdStrike Blog
Gautam Mehandru
2025-12-19 00:00
🚀 The article explores CrowdStrike's method for training AI agents in Security Operations Centers (SOCs). With AI adversaries evolving rapidly, traditional manual processes are becoming inadequate. The article emphasizes the need for reliable SOC agents that can accurately triage and investigate threats. CrowdStrike's approach focuses on science-backed training, rigorous testing, and continuous refinement to ensure agents can operate effectively in high-stakes environments. Key criteria for...
Source: CrowdStrike Blog
Ted Driggs - Chase Midler
2025-12-17 00:00
🚀 CrowdStrike Endpoint Security has demonstrated a remarkable 273% ROI over three years, as revealed in a Forrester Total Economic Impact™ study. The study highlights significant benefits, including an 80% reduction in endpoint-related breaches and a 95% cut in technology management labor. Organizations also saved over 30,500 hours across teams. With a net present value of $3.7 million, CrowdStrike's AI-native solution offers efficient protection and streamlined operations. #CyberSecurity...
Source: CrowdStrike Blog
Dana Larson
2025-12-15 00:00
🚀 CrowdStrike has launched Falcon AI Detection and Response (AIDR) to enhance security in the AI landscape. As AI tools become integral to businesses, they introduce new vulnerabilities, particularly at the prompt and agent interaction layer. With AIDR, organizations can protect this critical area across AI adoption and development via a unified platform. Researchers are tracking over 180 prompt injection techniques, highlighting the urgency for robust AI security. Traditional security...
Source: CrowdStrike Blog
John Gamble
2025-12-08 00:00
🚀 CrowdStrike is enhancing Falcon Shield with key innovations to combat identity-based attacks in the AI era. The update offers a centralized view of AI agents across platforms and integrates first-party SaaS telemetry into Falcon Next-Gen SIEM. This aims to improve security as enterprises adopt more SaaS and AI tools. With identity threats on the rise, these advancements will bolster protection against emerging challenges. #Cybersecurity #AI #IdentitySecurity #CrowdStrike #TechInnovation
Source: CrowdStrike Blog
Charles Choe
2025-12-04 00:00
🔍 Indirect prompt injection attacks pose a significant risk to AI systems. This subtle threat involves embedding malicious information in data sources accessed by generative AI, making it harder to detect. 🛡️ While direct prompt injection is well-known, indirect methods can hide in emails, documents, or images. These attacks can be targeted or widespread, affecting multiple systems at once. Organizations must take steps to monitor and defend against this emerging vulnerability. #AI...
Source: CrowdStrike Blog
John Gamble
2025-12-04 00:00
🚨 New Threat Alert: WARP PANDA 🚨 CrowdStrike has identified WARP PANDA, a sophisticated adversary linked to China, targeting VMware vCenter environments in the U.S. This group employs advanced malware like BRICKSTORM and new implants, Junction and GuestConduit, showcasing high technical skills. Their operations focus on long-term covert access, primarily for intelligence gathering aligned with China's strategic interests. Initial access often exploits internet-facing devices, allowing lateral...
Source: CrowdStrike Blog
Counter Adversary Operations
2025-12-02 00:00
🚀 CrowdStrike has integrated NVIDIA Nemotron via Amazon Bedrock into its Falcon platform to enhance autonomous cybersecurity measures. This collaboration aims to provide defenders with advanced AI capabilities to combat increasingly sophisticated cyber threats. NVIDIA Nemotron's open models will enable security teams to analyze complex data more effectively and respond quickly. With Amazon Bedrock, these AI tools are more accessible and scalable, streamlining the integration process....
Source: CrowdStrike Blog
Nico Lozano - Chris Kachigian
2025-12-01 00:00
🚀 CrowdStrike has unveiled new cloud detection and response (CDR) capabilities aimed at enhancing security for hybrid and multi-cloud environments. These innovations allow security teams to detect and respond to threats in seconds, significantly reducing the mean time to respond (MTTR). The need for effective CDR is underscored by a 40% rise in cloud intrusions, particularly from China-nexus adversaries, as highlighted in the CrowdStrike 2025 Threat Hunting Report. Stay informed and...
Source: CrowdStrike Blog
Karishma Asthana
2025-12-01 00:00
🚀 CrowdStrike is enhancing AWS security with the Falcon Next-Gen SIEM. This innovation includes simplified onboarding, flexible pricing, and new integrations for better cost efficiency. Key features: 🔹 Quick Start for AWS 🔹 Pay-as-you-go pricing 🔹 Expanded integration with Amazon Athena These advancements aim to help SOC teams detect and respond to threats more effectively across cloud environments. #AWS #CrowdStrike #CyberSecurity #SIEM #CloudSecurity
Source: CrowdStrike Blog
Vicky Ngo-Lam
2025-11-20 00:00
CrowdStrike Research has identified significant security flaws in code generated by the Chinese AI model DeepSeek-R1. Their tests revealed that prompts containing politically sensitive topics could increase the risk of vulnerabilities by up to 50%. This poses a serious concern, as many developers utilize AI coding assistants. The findings suggest a need for further analysis on how political biases in LLMs affect code quality. 🔍💻⚠️ #CyberSecurity #AI #DeepSeek #Coding #TechResearch
Source: CrowdStrike Blog
Stefan Stein
2025-11-20 00:00
🚀 Falcon Data Protection for Cloud is now available, offering real-time visibility into sensitive data in motion and at rest. This solution addresses the limitations of traditional data loss prevention tools, which struggle in modern cloud environments. With eBPF monitoring, organizations can detect unauthorized data movement instantly, enhancing security without added complexity. Stay ahead of data risks in a cloud-first world! ☁️🔒 #DataProtection #CyberSecurity #CloudSecurity #FalconData #DSPM
Source: CrowdStrike Blog
Luke Hunsinger
2025-11-18 00:00
🚨 CrowdStrike's OverWatch has effectively disrupted the operations of BLOCKADE SPIDER, a sophisticated eCrime adversary known for cross-domain attacks. These attacks involve navigating multiple systems to exploit vulnerabilities within organizations. BLOCKADE SPIDER, active since April 2024, employs tactics like credential dumping and ransomware deployment. In early 2025, CrowdStrike identified the adversary accessing a victim's network via an unmanaged VPN. By leveraging cross-domain data,...
Source: CrowdStrike Blog
Chris Prall
2025-11-17 00:00
🚨 A recent report from Anthropic's Threat Intelligence team highlights a significant shift in cybersecurity. They've disrupted a nation-state operation using AI for automated cyberattacks on a global scale. 🌍 The report urges defenders to adapt by leveraging AI for defense strategies, including SOC automation and threat detection. It's a call for the cybersecurity community to innovate in response to evolving threats. 🔒 As adversaries embrace AI, defenders must also enhance their capabilities...
Source: CrowdStrike Blog
CrowdStrike
2025-11-13 00:00
🌐 The shift from vulnerability management to exposure management is crucial as adversaries become faster and more sophisticated. 🛡️ Traditional methods can't keep up with the rapid exploitation of vulnerabilities. A new approach is needed, focusing on visibility, intelligence, and unified platforms for effective action. 🔍 CrowdStrike emphasizes the importance of understanding real-world adversary behavior to enhance risk management and stop breaches. #Cybersecurity #ExposureManagement...
Source: CrowdStrike Blog
Mike Petronaci
2025-11-12 00:00
🔒 Microsoft released its November 2025 security updates, addressing 63 vulnerabilities, including one zero-day and five critical flaws. This is a decrease from October's 172 patches. 🖥️ Notably, this marks the first Extended Security Update (ESU) for Windows 10 after its end of life on October 14, 2025. Organizations must enroll in ESU to receive updates. 📊 Key risks this month include 29 patches for elevation of privilege and 16 for remote code execution. #Microsoft #PatchTuesday...
Source: CrowdStrike Blog
Falcon Exposure Management Team
2025-11-10 00:00
🚀 CrowdStrike has been recognized as the Overall Leader in the 2025 KuppingerCole ITDR Leadership Compass. The company achieved top marks in every evaluated category, including Product, Innovation, and Market. Notably, it scored nearly perfectly in areas like Detection and Incident Investigation. CrowdStrike emphasizes the importance of a strong identity security strategy as cyber threats evolve. Their Falcon® Next-Gen Identity Security platform aims to protect all identities, human and non-...
Source: CrowdStrike Blog
Ryan Terry
2025-11-07 00:00
🚀 The Falcon Platform enhances security reporting by delivering fast, CISO-ready executive reports that focus on critical risks. Traditional exposure reporting can be slow and filled with errors. Analysts often face challenges in gathering and formatting data, leading to outdated insights. With tools like Falcon Next-Gen SIEM and Charlotte AI, the Falcon platform streamlines this process, automating report generation and providing real-time insights on vulnerabilities. Stay informed and agile...
Source: CrowdStrike Blog
Keyauri Kendrick - Ben McInnis - Jay Flora - Lucia Stanham
2025-11-05 00:00
🚀 CrowdStrike is enhancing its agentic security workforce with new agents designed to tackle key challenges in security operations. These agents focus on faster data pipeline creation, simplifying custom app development, and enabling continuous exposure scanning. The Charlotte Agentic SOAR orchestrates these agents for synchronized execution, improving efficiency and enabling proactive security measures. With these advancements, security teams can automate time-intensive tasks, allowing...
Source: CrowdStrike Blog
Lucia Stanham
2025-11-05 00:00
🚀 CrowdStrike is advancing security automation with Charlotte Agentic SOAR, enhancing the Falcon platform. This new system combines AI-driven agents and human expertise to improve response times against evolving threats. Traditional playbooks struggle to adapt, but Charlotte offers real-time decision-making and context-aware actions. With its robust data layer, security teams can act swiftly and confidently. Learn more about this innovative approach! #CyberSecurity #AI #SecurityAutomation...
Source: CrowdStrike Blog
Paola Miranda
2025-11-05 00:00
🌐 Exciting advancements are coming to CrowdStrike Falcon® for XIoT! These innovations aim to enhance visibility and segmentation in operational technology networks. As industrial systems expand, security gaps can arise, leaving networks vulnerable to threats. The new zero-touch asset discovery feature allows for automatic identification of OT assets without the need for complex configurations. This aims to provide security teams with clearer insights and faster responses. Discover more about...
Source: CrowdStrike Blog
Dana Larson
2025-11-03 00:00
Europe faces a growing threat from eCrime and nation-state activities, as highlighted in the CrowdStrike 2025 European Threat Landscape Report. The report reveals a significant increase in ransomware and extortion attacks, with Europe being the second most-targeted region after North America. Notably, the UK, Germany, Italy, France, and Spain are among the most affected countries. Key sectors like manufacturing and technology are vulnerable, attracting financially motivated adversaries who...
Source: CrowdStrike Blog
Counter Adversary Operations
2025-10-29 00:00
🚀 Exciting news for CrowdStrike! The Falcon platform has achieved 100% Protection and Accuracy in SE Labs’ Endpoint Protection Evaluation. In the recent evaluation, it earned the AAA EPS certification, with no false positives recorded. This highlights its effectiveness in blocking both targeted and general attacks. Additionally, CrowdStrike secured three awards at the 2025 SE Labs Security Awards, showcasing its industry-leading capabilities. 🏆 #CrowdStrike #EndpointSecurity #Cybersecurity...
Source: CrowdStrike Blog
Brad Moon
2025-10-27 00:00
🚀 Exciting news! CrowdStrike has been named the Growth and Innovation Leader in the 2025 Frost Radar™ for SaaS Security Posture Management for the second year in a row. This recognition highlights the importance of addressing security gaps in SaaS applications, which are increasingly targeted by threat actors. With CrowdStrike Falcon® Shield, organizations can enhance their visibility and control over both human and non-human identities in a complex SaaS ecosystem. Frost & Sullivan noted an...
Source: CrowdStrike Blog
Charles Choe
2025-10-22 00:00
A critical vulnerability, CVE-2025-54918, was identified in September 2025, impacting Domain Controllers using LDAP or LDAPS services. This flaw allows attackers to escalate privileges from standard domain users to SYSTEM level, threatening entire Active Directory environments. The vulnerability exploits NTLM relay and coerced authentication techniques. Organizations can enhance their security using CrowdStrike solutions to mitigate risks. 🔒⚠️ #Cybersecurity #Vulnerability #ActiveDirectory...
Source: CrowdStrike Blog
Tom Kahana
2025-10-21 00:00
🚀 Exciting updates from the Falcon platform! The new dynamic user experience, powered by CrowdStrike Enterprise Graph and Charlotte AI, aims to simplify interactions for security teams. As cyber threats evolve, the need for an intuitive interface is crucial. This upgrade offers unified asset visibility, customizable workspaces, and executive-ready reporting, enhancing risk management in hybrid and multi-cloud environments. 🔍 Learn more about how this AI-driven approach can help streamline...
Source: CrowdStrike Blog
Bhavna B. Sehgal
2025-10-21 00:00
The latest CrowdStrike State of Ransomware Survey reveals a concerning gap in business preparedness. While 50% of security leaders feel “very well prepared,” 78% faced ransomware attacks last year. Only 22% recovered within 24 hours, highlighting a false sense of security. As adversaries leverage AI for faster attacks, organizations must innovate their defenses. 89% see AI-powered protection as key to improving security. #Ransomware #CyberSecurity #AI #BusinessPreparedness #DataProtection 🛡️🔒💻
Source: CrowdStrike Blog
Chris Prall
2025-10-20 00:00
🌐 The CrowdStrike 2025 APJ eCrime Landscape Report reveals significant changes in the Asia Pacific and Japan region's cyber threat landscape. 👥 Chinese-language underground marketplaces are thriving, enabling the sale of stolen data and illicit services. Notable platforms include Chang’an and Huione Guarantee, which have facilitated billions in transactions. 💻 The rise of AI-driven ransomware campaigns is also a growing concern, targeting high-value sectors like manufacturing, technology, and...
Source: CrowdStrike Blog
Adam Meyers
2025-10-17 00:00
🚨 Nearly 40,000 vulnerabilities were disclosed in 2024, leaving security teams overwhelmed. ExPRT.AI, part of CrowdStrike Falcon® Exposure Management, helps prioritize vulnerabilities based on real-time attack behavior, not just static severity scores. This predictive tool uses live adversary signals to identify which vulnerabilities are most likely to be exploited. By leveraging AI and extensive threat intelligence, ExPRT.AI enables faster remediation of critical vulnerabilities....
Source: CrowdStrike Blog
Rona Kedmi
2025-10-16 00:00
🚨 CrowdStrike has reported active exploitation of Git vulnerability CVE-2025-48384. This vulnerability affects macOS and Linux systems and can lead to arbitrary code execution via malicious Git repository cloning. 🛡️ The threat actors utilize social engineering tactics to compromise unpatched Git installations. Organizations are advised to prioritize timely software updates and enhance their security strategies. 🔒 Stay vigilant and protect your systems! #Cybersecurity #GitVulnerability...
Source: CrowdStrike Blog
Ash Leslie - Doug Brown - Mitch Datka
2025-10-15 00:00
🚀 CrowdStrike has enhanced ChromeOS security with new automated response actions and expanded GovCloud support. This upgrade allows for rapid containment of compromised devices, ensuring security teams can act quickly to prevent further issues. The native connector provides unified visibility without the need for additional tools. With these advancements, organizations can protect ChromeOS devices as effectively as other endpoints. #CyberSecurity #ChromeOS #CrowdStrike #GovCloud...
Source: CrowdStrike Blog
Chris Prall
2025-10-14 00:00
CrowdStrike is addressing the rising threat of "living-off-the-land" attacks, where adversaries misuse legitimate tools instead of traditional malware. Their new capability, Anomalous Process Execution (APEX), enhances defense by using AI to identify and stop the abuse of trusted applications like Windows utilities and remote management tools. This shift in tactics has made detection challenging, as these applications are critical for business operations. APEX aims to improve security by...
Source: CrowdStrike Blog
Chris Prall
2025-10-14 00:00
🔒 Microsoft has issued its October 2025 security update, addressing a total of 172 vulnerabilities. This is the highest monthly total for the year. This update includes two publicly disclosed vulnerabilities, three zero-day vulnerabilities, and eight critical vulnerabilities, along with 159 others of varying severity. The main risk types involve elevation of privilege (80 patches), remote code execution (31), and information disclosure (28). Most patches were for Microsoft Windows (134),...
Source: CrowdStrike Blog
Falcon Exposure Management Team
2025-10-14 00:00
🚨 Important Update for Windows 10 Users! 🚨 As of October 14, 2025, Microsoft will end support for non-LTSC releases of Windows 10. This means no more security updates or feature patches, increasing vulnerability to cyber threats. Many enterprises still rely on Windows 10, holding significant market share. Organizations must plan their migration to supported systems to avoid security risks and compliance issues. Stay informed and protect your systems! 💻🔒 #Windows10 #CyberSecurity #EndOfSupport...
Source: CrowdStrike Blog
Hari Pulapaka
2025-10-10 00:00
🚀 Exciting news! CrowdStrike Falcon® Next-Gen SIEM has been named a Visionary in the 2025 Gartner Magic Quadrant for Security Information and Event Management. In just a year, it is redefining SIEM with AI and real-time data, improving SOC operations significantly. Customers are experiencing 150x faster searches and over 1PB/day of data ingestion. With the recent acquisition of Onum, CrowdStrike is enhancing its capabilities, achieving even faster incident response. #CrowdStrike #SIEM...
Source: CrowdStrike Blog
Ajit Sancheti