Reports
AI-generated structured vendor updates
CrowdStrike Redefines AI Agent Identity Security with Continuous Authorization and SPIFFE
CrowdStrike launches Continuous Identity for AI Agents on the Falcon platform, using SPIFFE for verifiable identities and AIDR for real-time intent detection, enabling zero standing privileges and risk-aware dynamic authorization to replace static policies for AI agent access control.
CrowdStrike Unveils Continuous Identity: Real-Time Risk-Aware Authorization for AI Agents
CrowdStrike launches Continuous Identity for AI Agents, leveraging acquired SGNL technology with SPIFFE-based verifiable identities, zero standing privileges, and real-time risk-aware authorization. This shifts the identity security control plane from static policies to continuous risk assessment, integrating endpoint telemetry for all identity types, including AI agents.
CrowdStrike Seizes AI Agent Identity Control Plane with Continuous Authorization
CrowdStrike launches Continuous Identity for AI Agents, leveraging SGNL acquisition, to replace static permissions with real-time, risk-based authorization via SPIFFE standards, positioning Falcon as the identity control plane for agentic enterprises.
CrowdStrike's Continuous Identity for AI Agents: SPIFFE Dynamic Authorization Reshapes Security Control Plane
CrowdStrike launches Continuous Identity for AI Agents on Falcon platform, using SPIFFE standard for cryptographically-verifiable identities, replacing static API keys with real-time authorization and instant revocation. Integrates SGNL technology and AI Detection and Response to monitor prompt intent, preventing privilege abuse and model overreach.
CrowdStrike Reimagines AI Agent Security with SPIFFE-Based Continuous Authorization
CrowdStrike launches Continuous Identity for AI Agents, using SPIFFE to issue verifiable identities to each agent. It enforces real-time authorization based on owner, caller, and device risk, eliminates standing privileges, and maintains context across delegation. Falcon AI monitors prompts for intent abuse.
CrowdStrike's Continuous Identity for AI Agents: Real-Time Risk Engine Replaces Static Policies
CrowdStrike launches Continuous Identity for AI Agents, assigning cryptographically verifiable identities via SPIFFE and authorizing every agent action based on owner, caller, and device risk in real time. It eliminates standing privileges, integrates with Falcon AIDR for permission misuse detection, and extends the identity security control plane across human, non-human, and AI identities.
CrowdStrike Continuous Identity for AI Agents Shifts Control Plane
At Identiverse 2026, CrowdStrike launched Continuous Identity for AI Agents, a Falcon Next-Gen Identity Security capability. Using SPIFFE for verifiable agent identity, it dynamically grants/revokes access based on real-time risk, eliminates standing privileges, and integrates with Falcon AIDR to detect privilege misuse, shifting the identity control plane from static policies to continuous risk assessment.
CrowdStrike Launches Falcon OverWatch for Defender, Extending Threat Hunting to Microsoft Defender Environments
<p>CrowdStrike launched Falcon OverWatch for Defender, extending its elite threat hunting team to Microsoft Defender endpoint environments without requiring existing deployment replacement. In 2025, 82% of intrusions were malware-free, fastest eCrime breakout time was just 27 seconds, and AI-driven attacks increased 89% YoY. CrowdStrike also was named a Gartner 2026 Magic Quadrant Leader for Cyber Threat Intelligence (furthest right in Completeness of Vision) and launched Threat AI — the industry's first agentic threat intelligence system.</p>
CrowdStrike Launches Falcon OverWatch for Defender, Extending Threat Hunting to Microsoft Defender Environments
<p>CrowdStrike launched Falcon OverWatch for Defender, extending its elite threat hunting team to Microsoft Defender endpoint environments without requiring existing deployment replacement. In 2025, 82% of intrusions were malware-free, fastest eCrime breakout time was just 27 seconds, and AI-driven attacks increased 89% YoY. CrowdStrike also was named a Gartner 2026 Magic Quadrant Leader for Cyber Threat Intelligence (furthest right in Completeness of Vision) and launched Threat AI — the industry's first agentic threat intelligence system.</p>
CrowdStrike Charlotte AI Agentic Response In-Depth: Automated Security Investigation and Behavior Baseline Challenges
CrowdStrike launches Charlotte AI Agentic Response enabling AI Agents to autonomously complete end-to-end security investigations from alert to root cause. 95% of Tier 1 alerts can be auto-processed. Dynamic behavior baseline updating and investigation explainability are key challenges
CrowdStrike Threat Report: Attack Breakout Time Down to 29 Minutes
CrowdStrike 2026 Threat Report: Average breakout time down to 29 minutes, 82% attacks malware-free, AI-empowered attackers up 89%.
CrowdStrike Q3 FY2026 Record: $265M Net New ARR Sustains Growth Momentum
CrowdStrike $265M net new ARR + 73% YoY growth maintaining strong momentum despite macro pressures validates 'AI-driven attack surface expansion → security demand increase' business logic. But high valuation (P/S ~25) means market has extremely high expectations for sustained growth, any growth slowdown could trigger valuation adjustment.
CrowdStrike Accelerates Vulnerability Assessment with Generative AI
CrowdStrike integrates generative AI into Falcon platform to compress vulnerability assessment from hours to minutes. The system auto-correlates threat intel with asset context, producing actionable remediation guidance, reshaping security response architecture.
CrowdStrike Discloses New Detection Method for Kerberos Relay Attacks
CrowdStrike disclosed a novel detection technique for Kerberos authentication relay attacks via DNS CNAME record abuse. The research exposes potential security blind spots in Active Directory infrastructure and provides behavior-based detection solutions.
CrowdStrike Uncovers Kerberos Relay Attack via DNS CNAME Abuse
CrowdStrike identified a novel Kerberos relay technique where attackers forge DNS CNAME records to bypass authentication. By exploiting domain resolution vulnerabilities, this method redirects Kerberos traffic to malicious servers, requiring correlation of DNS and authentication logs for detection.
CrowdStrike Launches AI Agent Autonomous Execution Platform AgentWorks
CrowdStrike upgrades Charlotte AI from chatbot to autonomous agent platform. Users can create, orchestrate and deploy AI agents via natural language for security automation. This shifts security operations from manual to agent-driven model.
CrowdStrike Advances AI Agent Ecosystem for Security Automation
CrowdStrike introduces Charlotte AI AgentWorks to build an AI agent ecosystem automating security operations. The platform enables agent collaboration for threat detection and response, improving efficiency and reducing manual efforts.
CrowdStrike Extends Falcon Platform with Data Security Features
CrowdStrike has enhanced its Falcon platform with data security capabilities to secure data at rest and in transit, offering unified protection across all environments regardless of location or movement.
CrowdStrike Extends Platform to Data Security Layer for Unified Protection
CrowdStrike adds Data Security module to Falcon platform, offering data discovery, classification, and real-time protection for endpoints, cloud, and SaaS. Integrates data security posture management with existing EDR via unified console to prevent data exfiltration.
CrowdStrike Launches Agentic MDR Service Powered by AI Agents
CrowdStrike introduces Agentic MDR service automating security operations through AI agents. The service integrates Falcon platform, Charlotte AI and professional teams for end-to-end automated operations from investigation to remediation.