Sunnyvale, CA, USA
2011
  |  By Hananel Livneh
The browser is the operating environment for modern work — it’s where employees access email, SaaS applications, collaboration tools, HR systems, finance platforms, customer data, developer resources and AI services. All of this activity makes the browser a high-value target for attackers because it sits between users, identities, applications, and sensitive enterprise data.
  |  By Jason Williams
Identities, permissions, exposed resources, and sensitive data can all contribute to risk regardless of whether they reside in AWS, Microsoft Azure, or Google Cloud. However, security teams often encounter uneven visibility and coverage across disparate cloud environments, and face difficulty in consistently understanding risk across a multi-cloud estate.
  |  By Atul Tulshibagwale
As organizations rush to deploy AI agents across enterprises to handle HR cases, write and execute code, and manage customer interactions, they very often need to grant them access to sensitive systems and data.
  |  By Karishma Asthana
Organizations are struggling to detect, investigate, and contain cloud threats before adversaries achieve their goals. The new CrowdStrike State of Cloud Detection and Response (CDR) Survey highlights the primary challenges they face: Together, these challenges are creating opportunities for threat actors to successfully breach cloud environments.
  |  By Mathilde Venault
Sharing applications with the world is no easy task. Developers struggle to ensure compatibility across different platforms, vendors continually search for new channels to showcase and distribute their software, and users often encounter hurdles when installing and updating the applications. To help solve this challenge, Microsoft offers multiple solutions including its Microsoft Store, the native Windows Installer component (.msi packages), and a lesser-known but powerful option: ClickOnce technology.
  |  By Mathilde Venault
Following our deep dive into the internals of ClickOnce application deployment in Part 1 of this two-part blog series, let’s focus on the security implications of this technology. In this blog, we examine how threat actors can weaponize ClickOnce features, and we reveal what we believe to be a new abuse that security teams need to be aware of.
  |  By Robert Sheldon
Adversaries are using AI to attack with unprecedented speed and precision. This trend, coupled with the rapidly growing use of agentic AI, means it is now necessary to use AI to protect and defend the modern tech stack. It is timely that on June 2, 2026, President Trump signed Executive Order 14409 on Promoting Advanced Artificial Intelligence Innovation and Security. At a high level, this EO validates that security is fundamental to reaping the benefits of AI.
  |  By Kurt Baker - Rona Kedmi
Frontier AI is poised to change cybersecurity faster than most organizations can adapt. It’s accelerating vulnerability discovery, which puts new pressure on security teams to handle more vulnerabilities, in less time, with workflows built for much slower technology. The primary challenge of the frontier AI era is not the increase in vulnerabilities. It’s understanding which exposures are most critical and how to address them before adversaries target them.
  |  By Ryan Terry
Identity security has long been built around a simple premise: Authenticate a user, grant access, and trust that decision until their next login. While for many this model worked well enough when identities were primarily human and access patterns were predictable, that’s no longer the case for humans and definitely not the case for AI agents.
  |  By CrowdStrike
Across enterprises, a familiar pattern is emerging. A business unit identifies an AI tool with a clear upside in productivity or revenue. Their proposal moves into procurement. Security raises concerns, and the legal team asks new questions about the tool. Compliance starts hesitating and the momentum slows. Finally, the project stalls. This friction is not due to resistance to innovation. It reflects a deeper structural issue: Most enterprise governance models were not designed for AI.
  |  By CrowdStrike
Falcon Cloud Security correlates cloud exposures into prioritized attack paths and enriches them with CrowdStrike adversary intelligence, helping teams focus on the risks most likely to be exploited across AWS, Azure, and Google Cloud. Subscribe and stay updated!
  |  By CrowdStrike
Phishing attacks increasingly rely on highly convincing login experiences designed to mimic trusted services. Watch how Falcon Secure Access detects sophisticated phishing attempts directly inside the browser, prevents sensitive data from being exposed, and protects users in real time. Subscribe and stay updated!#CrowdStrike.
  |  By CrowdStrike
Today’s adversaries move at the speed of AI, so defenders need to reason, decide, and act faster across every stage of security operations. Meet Charlotte AI AgentWorks, a no-code agent builder that enables teams to create mission-ready AI agents directly inside the CrowdStrike Falcon platform.
  |  By CrowdStrike
As adversaries use Frontier AI to discover, chain, and exploit vulnerabilities faster, security teams need to understand what is exploitable, where they are exposed, and how to reduce risk before attackers act. In this demo, see how Falcon Exposure Management helps teams operationalize CTEM across the attack surface. The walkthrough highlights continuous visibility across internal and external exposures, network vulnerabilities, applications, browser extensions, AI inventory, and attack paths.
  |  By CrowdStrike
Falcon Privileged Access replaces static, always-on privileges with zero standing access and dynamic control. Watch this demo to see how alongside Entra roles, AD groups, and local privileges, AWS roles and access to specific tags can be granted just in time, under secure conditions, and revoked automatically when the session ends or the moment conditions change. Subscribe and stay updated!
  |  By CrowdStrike
Falcon Next-Gen Identity Security enables continuous identity for AI agents, evaluating every tool call in real time using user context, agent trust, and risk signals. Watch the demo to see how CrowdStrike enforces dynamic policies and continuously validates both users and agents to prevent unauthorized actions, contain compromised agents, and securely scale AI adoption. Subscribe and stay updated!
  |  By CrowdStrike
As AI adoption accelerates, so does shadow AI. Without a complete inventory of AI tools, models, agents, and activity, organizations are exposed to unapproved usage, unmanaged access, and data risk, especially when AI activity happens locally, on endpoints, or outside traditional controls. In this video, you’ll see how Falcon for IT helps teams.
  |  By CrowdStrike
When Klotz was brought in, she assessed Trinseo’s security operations and saw a reactive, single-time-zone model stretched across too many tools. Today, Trinseo runs a modern, 24/7 SOC anchored on CrowdStrike Falcon Complete Next-Gen MDR and the AI-native CrowdStrike Falcon cybersecurity platform.
  |  By CrowdStrike
Modern adversaries do not break in loudly anymore. They log in, blend in, and move faster than most security teams can respond. In CrowdStrike’s 2026 Global Threat Report, the fastest observed breakout time was just 27 seconds, while 82% of detections were malware-free. Traditional defenses were not built for attacks that look like normal activity. This lightboard session breaks down why defenders are struggling to keep up, how modern adversaries operate across identities and cloud environments, and why the gap between intelligence and action continues to grow.
  |  By CrowdStrike
Falcon Cloud Security Graph Explorer helps teams identify internet-exposed, unprotected, and exploitable cloud risks—and prioritize what to fix first. Subscribe and stay updated!
  |  By CrowdStrike
Visibility in the cloud is an important but difficult problem to tackle. It differs among cloud providers, and each one has its own positive and negative aspects. This guide covers some of the logging and visibility options that Amazon Web Services (AWS) and Google Cloud Platform (GCP) offer, and highlights their blind spots and how to eliminate them.
  |  By CrowdStrike
Since a majority of the breaches are credential based, securing your multi-directory identity store - Microsoft Active Directory (AD) and Azure AD - is critical to protecting your organization from adversaries launching ransomware and supply chain attacks. Your security and IAM teams are concerned about securing AD and maintaining AD hygiene - and they need to be in sync, for example, to ensure that legacy and deprecated protocols like NTLMv1 are not being used and that the right security controls are in place to prevent breaches in real time.
  |  By CrowdStrike
You have to secure your workforce identities immediately, to protect your organization from modern attacks like ransomware and supply chain threats. Your environment could be just Microsoft Active Directory (AD), or a hybrid identity store with AD and Azure AD, and it's important to have a holistic view of the directories and a frictionless approach to securing them. If you're considering Microsoft to secure your identities and identity store (AD and Azure Active Directory), you should ask these five questions.
  |  By CrowdStrike
Learn about how to strengthen and modernize your agency's security protection, detection and remediation with Zero Trust. This white paper explains the unique risk factors federal agencies face, what a superior Zero Trust framework includes, and how cloud and endpoint security can help modernize federal security from the endpoint to the application.
  |  By CrowdStrike
Cloud adoption remains a key driver for digital transformation and growth for today's businesses, helping them deliver applications and services to customers with the speed and scalability that only the cloud can provide. Enabling them to do so safely is a critical objective for any enterprise IT security team.
  |  By CrowdStrike
Network segmentation has been around for a while and is one of the core elements in the NIST SP 800-207 Zero Trust framework. Although network segmentation reduces the attack surface, this strategy does not protect against adversary techniques and tactics in the identity phases in the kill chain. The method of segmentation that provides the most risk reduction, at reduced cost and operational complexity, is identity segmentation.

CrowdStrike protects the people, processes and technologies that drive modern enterprise. A single agent solution to stop breaches, ransomware, and cyber attacks—powered by world-class security expertise and deep industry experience.

Many of the world’s largest organizations already put their trust in CrowdStrike, including three of the 10 largest global companies by revenue, five of the 10 largest financial institutions, three of the top 10 health care providers, and three of the top 10 energy companies.

A Radical New Approach Proven To Stop Breaches:

  • Cloud Native: Eliminates complexity and simplifies deployment to drive down operational costs.
  • AI Powered: Harnesses the power of big data and artificial intelligence to empower your team with instant visibility.
  • Single Agent: Delivers everything you need to stop breaches — providing maximum effectiveness on day one.

One platform. Every industry. Superior protection.