I’m delighted to announce CrowdStrike’s intent to acquire Seraphic, the leader in browser runtime security. With this acquisition, we will extend the power of the CrowdStrike Falcon® platform into the browser to enforce security within sessions across any browser, on any device.
The browser is already the operating system of the enterprise workforce, connecting apps, data, and identity. It’s where employees collaborate and share data; where web-based SaaS applications execute and AI agents operate. As today’s employees work across myriad browsers on managed and unmanaged devices, securing their productivity requires visibility, control, and flexibility without disruption.
But for many organizations, the browser is a blind spot. Businesses lacking insight and control in the browser leave the door open for adversaries to abuse credentials, hijack sessions, weaponize AI interactions, and more. Current security models either force users into “walled garden” enterprise browsers or rely on high-latency network routing. Today’s organizations require security that operates directly within live browser sessions – without forcing browser replacement – to protect employees’ exchanges with SaaS applications, extensions, and AI tools across their preferred browsers and devices.
Seraphic provides real-time visibility into browser activity and the ability to enforce security within any browser runtime, using the browser you choose — Chrome, Edge, Safari, Firefox, or agentic browsers — on both managed and unmanaged devices. Security without forcing a browser.
CrowdStrike will integrate Seraphic’s browser-native protection with the Falcon platform’s vast endpoint telemetry and SGNL’s continuous authorization technology, which CrowdStrike has also recently agreed to acquire, to deliver a unified next-gen identity security strategy. Whether someone is working on a corporate laptop at company headquarters, or a contractor smartphone across the world, organizations will be able to provide secure access to corporate resources through their preferred browser.
Browser Security for the Modern Workforce
CrowdStrike already protects identities, data, workloads, and AI systems and agents across endpoint, cloud, and SaaS environments. With Seraphic, we will transform the SOC by correlating trillions of endpoint signals with deep, in-session browser telemetry. This will allow the Falcon platform to understand user behavior, application context, and data flow in real time, unlocking insight into browser-based risk that standalone enterprise browsers and legacy security often can’t achieve.
The integration of Seraphic into the Falcon platform will deliver the following capabilities:
In-Session Zero Trust Enforcement
CrowdStrike and Seraphic will embed zero-trust principles directly in the browser by enforcing zero standing privileges and using context-aware authorization that adapts as risk evolves. Using real-time risk signals from the Falcon platform and SGNL’s continuous authorization technology, each browser session will be continuously monitored and evaluated to confirm the person interacting with the browser is the legitimate user. Their actions will be allowed, restricted, or blocked as threat conditions change. By extending identity-driven verification and dynamic policy controls into the browser session, we will make the browser an active enforcement point for identity.
Security teams can also assess extension risk in real time and block or restrict high-risk extensions before they can access data or take malicious actions. The result is a resilient, zero-trust security posture that reduces reliance on device trust and limits attackers’ ability to hide inside legitimate sessions.
Secure AI Interactions in Every Browser
As more employees embrace AI tools, CrowdStrike and Seraphic will apply additional guardrails to secure how GenAI applications and agents are accessed, preventing shadow AI from scraping or exfiltrating sensitive corporate data. This protection will extend to unmanaged devices for consistent AI governance across the modern workforce, empowering organizations to embrace AI and accelerate innovation with confidence.
Disruption of Session-Based Threats
Seraphic randomizes the browser’s JavaScript engine to stop session-based threats including session hijacking, sophisticated phishing, and man-in-the-browser attacks at the point of execution. Its next-gen web data loss prevention will prevent copies, uploads, or screen grabs of sensitive data with AI-based content filtering and granular execution-layer controls.
Frictionless Browser Security
CrowdStrike and Seraphic will deliver browser security that disrupts adversaries without disrupting productivity. Our device-agnostic, browser-agnostic approach will provide “agentless-style” protection for contractors and third parties by securing the browser session without requiring a full endpoint agent. They will be able to securely connect with corporate systems and resources from wherever they are, on whatever device they use.
Securing Work Where It Happens
At the center of today’s increasingly distributed and AI-powered workforce is the browser, where employees access SaaS applications, AI tools, and corporate data. With Seraphic, CrowdStrike will extend the Falcon platform into the browser, making any browser a secure enterprise environment for work and AI.
CrowdStrike and Seraphic will deliver visibility and control into activity across all browsers, on managed and unmanaged devices and across BYOD policies. Employees can use their preferred browser without infrastructure changes or user disruption. Security teams gain insight that standalone browser security tools cannot achieve, control over real-time browser interactions, and the ability to define a set of controls that apply everywhere employees work.
This acquisition will fortify the Falcon platform’s ability to stop modern threats. With Seraphic’s browser-native protection and SGNL’s continuous authorization technology, CrowdStrike will create a unified security fabric that protects interactions from the endpoint, through the browser session, into the cloud.
Forward-Looking Statements
This blog contains forward-looking statements, including statements regarding the closing and benefits of the proposed Seraphic and SGNL acquisitions. These statements involve risks and uncertainties, and actual results may differ materially. There are a number of risks which could cause actual results to differ materially, including the satisfaction of the acquisition’s closing conditions, our ability to integrate Seraphic and SGNL, and other risks described in the filings we make with the Securities and Exchange Commission from time to time.
