Introduced today by CrowdStrike Holdings Inc. new features for Falcon extended its defense and response platform and expanded its CrowdXDR Alliance with new key strategic partners.
The first release is the CrowdStrike Asset Graph, a new graph database powered by the CrowdStrike Security Cloud that provides information technology and security leaders with a 360-degree view of assets and attack surfaces. Coverage includes both managed and unmanaged assets across all devices, users, accounts, applications, cloud workload and operational technologies to simplify IT operations and stop violations.
The CrowdStrike Asset Graph addresses the problem where digital transformation extends attack surfaces. This dramatically increases the risk of exposure to opponents who detect and exploit soft targets and vulnerabilities faster than they can identify. The Asset Graph provides a single holistic view of the risk posed by assets, including graphic visualizations of the relationships across all assets and the rich context necessary for security hygiene and proactive management of the security posture.
The new service will allow new CrowdStrike Falcon modules and features to be built on top of it to define, track and explore relationships between organizational assets. The first Falcon module to use Asset Graph was Falcon Discover (Security Hygiene), which includes third-party data integration with ServiceNow Inc.
The second release is Humio for Falcon, a new capability that extends CrowdStrike Falcon telemetry data retention for a year or longer. Because it can store data for longer periods of time, threat analytics and hunting capabilities for organizations are enhanced while helping them meet compliance requirements.
Humio for Falcon combines CrowdStrike Falcon with the centralized logging search capabilities CrowdStrike offers Humio. The service helps security teams analyze and act on real-time and historical data in their environment. With longer data retention, security teams can discover and identify potential threats with in-depth, contextual analytics and sub-second search results at any size through an index-free architecture.
“While the data available to threat hunters and incident responders is growing at an exponential rate, they are regularly being forced to reduce the length of time they can store this information,” said Michael Sentonas, chief technology officer at CrowdStrike , in a statement. “Humio for Falcon solves this problem by delivering scalable and cost-effective data retention that allows threat hunters and incident responders to look back and see if and when an opponent is active in a IT environment and reconcile every system they touch. ”
CrowdStrike has also added new features to “supercharge” threat detection, investigation, response and hunting to Falcon XDR.
New capabilities include Falcon Fusion workflows based on XDR specifications, which automate multiple workflows directly from Falcon XDR. This includes ticket creation via ServiceNow, notifications via email, Slack or webhook, and incident details from status changes to team appointments and comments.
A new XDR detections event timeline speeds up testing and investigation with a view that displays key detection events in chronological order to understand how activity progresses. Graph visualization of customer XDR detections can be created from custom queries written to look for environmental threats.
Finally, CrowdStrike announced new partners for its CrowdXDR alliance. The alliance brings together industry-leading security and IT solutions to enable unified threat detection and response.
Joining the alliance is Menlo Security Inc., Ping Identity Corp. at Vectra AI Inc. Current members include Cloudflare Inc., Okta Inc., Google Cloud, ServiceNow Inc., Zscaler Inc., Proofpoint Inc. at Mimecast Inc.
Photo: CrowdStrike
Show your support for our mission by joining our Cube Club and Cube Event Community of experts. Join the community that includes Amazon Web Services and Amazon.com CEO Andy Jassy, Dell Technologies founder and CEO Michael Dell, Intel CEO Pat Gelsinger and many more luminaries and experts.
.