Latest news with #FalconNext-GenSIEM
Techday NZ
4 days ago
- Business
- Techday NZ
CrowdStrike unveils AI-driven updates to Falcon threat intelligence
CrowdStrike has announced the latest release of Falcon Adversary Intelligence, providing real-time, personalised threat intelligence embedded into security operations centre workflows. The new version of Falcon Adversary Intelligence aims to align threat intelligence with each customer's environment, exposures, and detections, operationalising intelligence at scale for improved detection, hunting and response. CrowdStrike has a history of tracking over 265 nation-state, eCrime and hacktivist groups globally. Its current offering seeks to address the challenge security teams face with fragmented intelligence across disconnected tools and the lack of context needed to understand how adversary threats apply to an organisation's specific risk profile and technology stack. The company stated that adversaries are growing in sophistication, leveraging artificial intelligence to accelerate attacks while also targeting AI-supported business operations. The latest update of Falcon Adversary Intelligence is designed to address these developments by replacing fragmented intelligence tools and static feeds with a personalised approach that uses the Falcon platform's first-party telemetry. This system prioritises and personalises intelligence according to each organisation's unique environment and risk factors. Key features Among the main features introduced is automated onboarding and intelligent rule creation. The system integrates infrastructure mapping and utilises knowledge from across the Falcon platform to deliver customer-specific intelligence. This includes reporting on relevant threats and trends, monitoring dark web activities, and highlighting information according to industry, technology stack, and detection data. Platform-driven prioritisation is another component, generating contextual threat profiles that reflect real-time detections, known exposures, and company profiles. For example, if a new threat targets a specific industry, the system automatically elevates its priority, providing in-depth threat profiles, Tactics, Techniques, and Procedures, targeting patterns, and related intrusion information to support rapid decision-making by analysts. The release also introduces Threat Hunting Guides within Falcon Adversary Intelligence Premium. These guides allow analysts to shift directly from threat insights to targeted investigations across their environments. With prebuilt queries and guided workflows, analysts can avoid time-consuming manual research, reducing investigations from as many as 15 steps to just a few clicks. When used with Falcon Next-Gen SIEM, the platform's click-to-hunt capabilities are intended to further reduce manual effort and enable faster response to emerging threats. Additionally, Intelligence Explorer provides analysts with a consolidated workspace to investigate threats, cross-reference adversary context, and correlate detection results within a single view for streamlined operations. "Today's adversaries are treating speed and stealth like weapons, using GenAI, cross-domain attacks, and targeted social engineering to move faster than ever while staying undetected," said Adam Meyers, Head of Counter Adversary Operations at CrowdStrike. "Threat intelligence can't just inform – it has to drive action. This is a smarter, more dynamic way to deliver intel aligned to each customer's environment. By boosting relevance, accelerating response, and delivering real operational ROI, analysts can act faster, hunt smarter, and stay ahead of today's most sophisticated threats." The approach taken by Falcon Adversary Intelligence is intended to increase the relevance and timeliness of data available to security analysts, replacing manual workflows with automation where possible and reducing investigation time. The system continually adapts based on live data from the client's environment, supporting prioritisation of threats that are most pertinent to each organisation's exposures and operations. CrowdStrike highlighted its intention for the Falcon platform to contribute to more effective and context-driven threat defence as adversaries escalate the use of automation and AI in their attacks against enterprise environments. The company reports that these updates are now available to customers, enabling security teams to access real-time intelligence and workflow support within the Falcon ecosystem.
Business Wire
16-07-2025
- Business
- Business Wire
CrowdStrike Named the Leader and Fast Mover in the 2025 GigaOm Radar for Security Information and Event Management
AUSTIN, Texas--(BUSINESS WIRE)-- CrowdStrike (NASDAQ: CRWD) today announced it has been named both the Leader and Fast Mover in the 2025 GigaOm Radar for Security Information and Event Management (SIEM). The report recognized CrowdStrike as the most Innovative and complete Platform Play, and the only vendor to earn the highest scores across both Key Features and Business Criteria. With perfect 5/5 scores in key criteria including Attack Surface Coverage, LLM-Based Co-Pilot and Agents, Automation, and Threat Research Units, this recognition cements CrowdStrike Falcon® Next-Gen SIEM as the foundation of the AI-native SOC and the future of security operations. As adversaries grow faster and data volumes surge, legacy SIEMs, burdened by slow data ingestion, limited retention, complex workflows, delayed searches, and high costs, are failing to keep up. Falcon Next-Gen SIEM transforms security operations by combining native Falcon® platform and third-party data with AI-driven workflow automation and real-time intelligence. This delivers lightning-fast threat detection and response across the modern attack surface while dramatically reducing operational complexity and costs. Key report findings include: Enterprise-Wide Protection: With a perfect 5/5 score in Attack Surface Coverage, CrowdStrike combines native Falcon platform and third-party data to deliver unified visibility and AI-powered protection across the entire enterprise attack surface. Agentic AI Innovation: CrowdStrike earned perfect 5/5 scores in LLM-Based Co-Pilot and LLM-Based Agents. The report highlighted how 'Charlotte AI offers agentic capabilities for investigating, triaging, and responding to potential breaches,' supercharging SOC analysts and accelerating response. AI-Powered Automation: With a perfect 5/5 score in Automation, GigaOm praised CrowdStrike's use of ' ML-based dynamic detection prioritization for risk scoring and AI-powered IOCs for endpoint and cloud workload data. ' Falcon Fusion, CrowdStrike's no-code SOAR engine, enforces policy controls and automates remediation with more than 150 actions. Industry-Leading Threat Intelligence: CrowdStrike was the only vendor to receive a perfect 5/5 score in Threat Research Units. This underscores the power of real-time threat intelligence and advanced AI to enrich detections and surface high-fidelity alerts based on real-world adversary behavior. 'Organizations have relied on SIEM technology as the foundation of security operations for decades, but legacy approaches weren't built for today's threats,' said Ajit Sancheti, general manager, Falcon Next-Gen SIEM, CrowdStrike. 'With Falcon Next-Gen SIEM, we're delivering a modern, AI-native approach to security operations that combines real-time detection, automated workflows, and unified data to reduce complexity, costs, and stop breaches. Falcon Next-Gen SIEM is the backbone of the AI-native SOC, and this recognition from GigaOm affirms CrowdStrike's leadership in setting the standard for security operations in the AI era.' To learn more about CrowdStrike's recognition in the 2025 GigaOm Radar for Security Information and Event Management report, please visit our website and read our blog. About CrowdStrike CrowdStrike (NASDAQ: CRWD), a global cybersecurity leader, has redefined modern security with the world's most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities. Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value. CrowdStrike: We stop breaches. © 2025 CrowdStrike, Inc. All rights reserved. CrowdStrike and CrowdStrike Falcon are marks owned by CrowdStrike, Inc. and are registered in the United States and other countries. CrowdStrike owns other trademarks and service marks and may use the brands of third parties to identify their products and services.
Yahoo
14-06-2025
- Business
- Yahoo
CrowdStrike Bets Big on Next-Gen SIEM: Will it Fuel Growth Momentum?
CrowdStrike CRWD is doubling down on the next generation of Security Information and Event Management (SIEM) as part of its mission to protect enterprises against evolving cyber threats. The company's Falcon Next-Gen SIEM is modernizing the way businesses detect, investigate, and respond to security incidents. Unlike traditional SIEM tools that often struggle with high costs, complexity, and data overload, CrowdStrike's solution is designed to deliver faster insights at lower operational costs. By integrating SIEM with its Falcon platform, the company is providing end-to-end visibility across devices, cloud workloads, and user identities. Enterprises could now leverage the CrowdStrike Falcon agent to automate data collection for endpoints and cloud workloads. CRWD also unified adversary-driven detection across all data sources, implemented AI-based investigations and systemized response workflows through Falcon Fusion SOAR. The Next-Gen SIEM also provides 24/7 managed detection and response services. CrowdStrike's Next-Gen SIEM also brings in scalability through cloud-native operations, improved compliance support and advanced analytics. The solution ensures seamless integration of cloud with endpoint tools, making its implementation convenient for CrowdStrike's enterprise customers. To enhance its Next-Gen SIEM platform, CrowdStrike launched Falcon Adversary OverWatch Next-Gen SIEM in April 2025. This is a managed threat hunting solution from CrowdStrike that extends the company's threat hunting capabilities to third-party data sources, enabling real-time, expert-led threat detection and analysis. The Next-Gen SIEM is gaining robust traction, as testified by its 100% year-over-year ARR growth in the first quarter of fiscal 2026. Financially, the Falcon Next-Gen SIEM could help CrowdStrike sustain its strong growth. The solution is gaining robust traction, as testified by its 100% year-over-year annual recurring revenue (ARR) growth in the first quarter of fiscal 2026. This was way higher than the company's overall first-quarter ARR growth of 22%. Palo Alto Networks PANW launched Cortex XSIAM, an upgrade over its traditional SIEM, with significant enhancements like AI-driven analytics, automation, enhanced threat detection and response, MITRE ATT&CK Coverage Dashboards and streamlined alert prioritization. PANW is also experiencing solid traction in its Cortex XSIAM, which has witnessed ARR growth of 200% year over year in the third quarter of fiscal 2025. International Business Machines IBM has also enhanced its SIEM capabilities with the launch of QRadar SIEM Suite, which is cloud native and has added features of XDR, SOAR, and threat detection. The solution seamlessly integrates with IBM Security services, reducing barriers to adoption. As the legacy SIEM market is getting backdated and under-equipped to handle advanced cyber threats, multiple companies are venturing into this space. The total addressable market for XSIAM or Next-Gen SIEM is large enough to accommodate the growth of multiple players. This is the reason why CrowdStrike Next-Gen SIEM might prove to be a growth engine for the company. Shares of CrowdStrike have gained 39.4% year to date compared with the Zacks Security industry's growth of 21%. Image Source: Zacks Investment Research From a valuation standpoint, CRWD trades at a forward price-to-sales ratio of 23.18X, higher than the industry's average of 14.63X. Image Source: Zacks Investment Research The Zacks Consensus Estimate for CRWD's fiscal 2026 earnings implies a decline of 11%, while the 2027 earnings estimates imply growth of 34.7%. The estimates for fiscal 2026 and 2027 earnings have been revised upward in the past 30 days. Image Source: Zacks Investment Research CRWD currently carries a Zacks Rank #3 (Hold). You can see the complete list of today's Zacks #1 Rank (Strong Buy) stocks here Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Click to get this free report International Business Machines Corporation (IBM) : Free Stock Analysis Report Palo Alto Networks, Inc. (PANW) : Free Stock Analysis Report CrowdStrike (CRWD) : Free Stock Analysis Report This article originally published on Zacks Investment Research ( Zacks Investment Research
Yahoo
06-06-2025
- Business
- Yahoo
Zscaler's Agentic Ops Surge: Will It Be the Next Growth Driver?
Zscaler's ZS agentic operations are experiencing massive growth in information technology operations (ITOps) and Security Operations (SecOps). In the ITOps business, Zscaler rolled out ZDX Copilot as an integrated feature in the ZDX Advanced Plus package. In SecOps, Zscaler introduced agentic operations across multiple modules, including Risk360, Business Insights, Unified Vulnerability Management, Identity Threat Detection, and Cyber Asset Attack Surface Management. Since the introduction of ZDX Copilot, the company has experienced a 70% year-over-year rise in the bookings of the ZDX Advanced Plus package. As Zscaler's customers benefited from the lower mean time-to-resolution of service tickets, its ZDX Advanced Plus package grew to $75 million in bookings since the introduction of ZDX Copilot. Zscaler's SecOps business experienced 120% year-over-year growth in annual contract value since the integration of agentic operations in its security solutions. Driven by these factors, the New Growth Categories (NGC), which account for Zero Trust Everywhere, Data Security Everywhere and Agentic Operations, reached the milestone of approximately $1 billion in annual recurring revenues (ARR), while ZS' total ARR reached $2.9 billion in the third quarter fiscal 2025. The company in its third-quarter fiscal 2025 earnings reported that its NGC revenues were growing at a faster pace than its average ARR. Zscaler's Agentic Operations will help better compete with its rivals. Zscaler's competitors, including Palo Alto Networks PANW and CrowdStrike CRWD, have also expanded their expertise in Agentic Operations. Palo Alto Networks has deployed Cortex XSIAM for incident detection, investigation and response purposes. Palo Alto Networks' Cortex XSIAM continuously scans via telemetry across endpoints, network and cloud for providing accelerated threat response. CrowdStrike has introduced Falcon Next-Gen SIEM and Charlotte AI. While Charlotte AI functions as a generative AI security analyst, reducing the support time provided by cybersecurity professionals, CrowdStrike's Falcon Next-Gen SIEM provides a unified platform for detecting threats, investigating attacks and responding to them. Since the Agentic Operations market is still expanding, multiple players have enough room to grow in this space. This has been a boon to players like Zscaler who got the headstart in the emerging Agentic Operations market. Shares of Zscaler have gained 66.8% year to date compared with the Zacks Security industry's growth of 20.6%. Image Source: Zacks Investment Research From a valuation standpoint, Zscaler trades at a forward price-to-sales ratio of 15.16X, higher than the industry's average of 14.6X. Image Source: Zacks Investment Research The Zacks Consensus Estimate for Zscaler's fiscal 2025 earnings implies a year-over-year decline of 0.31% while the 2026 earnings estimate imply growth of 11.86%. The estimates for fiscal 2025 and 2026 have been revised upward in the past seven days. Image Source: Zacks Investment Research Zscaler currently carries a Zacks Rank #3 (Hold). You can see the complete list of today's Zacks #1 Rank (Strong Buy) stocks here. Want the latest recommendations from Zacks Investment Research? Today, you can download 7 Best Stocks for the Next 30 Days. Click to get this free report Palo Alto Networks, Inc. (PANW) : Free Stock Analysis Report Zscaler, Inc. (ZS) : Free Stock Analysis Report CrowdStrike (CRWD) : Free Stock Analysis Report This article originally published on Zacks Investment Research ( Zacks Investment Research Error in retrieving data Sign in to access your portfolio Error in retrieving data Error in retrieving data Error in retrieving data Error in retrieving data
Yahoo
04-06-2025
- Business
- Yahoo
CrowdStrike and GuidePoint Security Surpass $1 Billion in Sales, Fueled by Explosive Demand for Falcon Next-Gen SIEM
Partnership milestone highlights success in transforming security operations with the Falcon platform and accelerating consolidation through Falcon Flex AUSTIN, Texas, June 04, 2025--(BUSINESS WIRE)--CrowdStrike (NASDAQ: CRWD) today announced it is the first cybersecurity independent software vendor (ISV) to surpass $1 billion in total sales through its partnership with GuidePoint Security, a cybersecurity solutions leader enabling organizations to make smarter decisions and minimize risk. As the speed and sophistication of attacks accelerate and the skills gap widens, organizations are turning to cutting-edge AI-native technology and cybersecurity expertise to stay ahead of modern threats. CrowdStrike and GuidePoint Security are meeting this demand by combining the power of the CrowdStrike Falcon® cybersecurity platform with expert-led services to protect organizations of all sizes. GuidePoint is fueling rapid adoption by delivering scalable services built on Falcon Next-Gen SIEM, which unifies native and third-party data, real-time intelligence, and AI-driven automation to deliver comprehensive visibility, high-fidelity alerts, and machine speed response. With this disruptive technology, GuidePoint is helping organizations replace outdated systems, streamline security and IT data management, and stop breaches. A key enabler of this success is Falcon Flex, which provides adaptable licensing for the Falcon platform's full portfolio of best-in-class modules. This enables partners like GuidePoint to deliver greater value to customers by offering the flexibility to use what they need, when they need it. With Falcon Flex and Falcon Next-Gen SIEM, GuidePoint is making it easier for organizations worldwide to transform security operations and consolidate point products – meeting surging demand for the Falcon platform in the modern AI era. "Our partnership with CrowdStrike is rooted in a shared mission: empowering organizations to confidently stop breaches," said Mark Thornberry, senior vice president, vendor management at GuidePoint Security. "This milestone reflects the value organizations place on scalable, AI-native cybersecurity solutions – and the trust they put in GuidePoint to deliver the right expertise and services around the Falcon platform to meet their evolving needs." "GuidePoint has been a long-standing and trusted partner in our ecosystem, consistently delivering the expertise and services customers need to unlock the full potential of the Falcon platform," said Daniel Bernard, chief business officer at CrowdStrike. "Their focus on Falcon Next-Gen SIEM and recognition of the transformative value of Falcon Flex have enabled customers to streamline security operations, consolidate costs and stay ahead of evolving threats. Surpassing $1 billion reflects the strength of our partnership and the market's confidence in our shared ability to drive cybersecurity transformation." GuidePoint Security was recently named CrowdStrike's 2025 Americas Falcon Flex Partner of the Year for its demonstrated excellence in Falcon Flex performance. Together, the companies are enabling thousands of organizations to consolidate legacy tools, eliminate complexity, and strengthen security outcomes. About CrowdStrike CrowdStrike (NASDAQ: CRWD), a global cybersecurity leader, has redefined modern security with the world's most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data. Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities. Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value. CrowdStrike: We stop breaches. Learn more: Follow us: Blog | X | LinkedIn | Facebook | Instagram Start a free trial today: © 2025 CrowdStrike, Inc. All rights reserved. CrowdStrike and CrowdStrike Falcon are marks owned by CrowdStrike, Inc. and are registered in the United States and other countries. CrowdStrike owns other trademarks and service marks and may use the brands of third parties to identify their products and services. About GuidePoint Security GuidePoint Security provides trusted cybersecurity expertise, solutions, and services that help organizations make better decisions that minimize risk. Our experts act as your trusted advisor to understand your business and challenges, helping you through an evaluation of your cybersecurity posture and ecosystem to expose risks, optimize resources and implement best-fit solutions. GuidePoint's unmatched expertise has enabled 40% of Fortune 500 companies and more than half of the U.S. government cabinet-level agencies to improve their security posture and reduce risk. Learn more at: View source version on Contacts Media Contact: Jake SchusterCrowdStrike Corporate Communicationspress@ Sign in to access your portfolio
