Data Leakage: AI’s Plumbing Problem
Sensitive information disclosure ranks #2 on the OWASP Top 10 for LLM Applications, and for good…
Inside the Latest Innovations Powering Falcon Exposure Management
Today’s adversaries operate at machine speed. According to the CrowdStrike 2025 Global Threat Report, the average…
December 2025 Patch Tuesday: One Critical Zero-Day, Two Publicly Disclosed Vulnerabilities Among 57 CVEs
Zero-Day Vulnerability in Windows Cloud Files Mini Filter Driver CVE-2025-62221 is an Important elevation of privilege…
Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary
Throughout 2025, CrowdStrike has identified multiple intrusions targeting VMware vCenter environments at U.S.-based entities, in which…
To Stop AI-Powered Adversaries, Defenders Must Fight Fire with Fire
Anthropic’s Threat Intelligence team recently uncovered and disrupted a sophisticated nation-state operation that weaponized Claude’s agentic…
From Vulnerability Management to Exposure Management: The Platform Era Has Arrived
AI has collapsed the vulnerability exploit lifecycle. Adversaries now discover, weaponize, and exploit exposures across hybrid…
November 2025 Patch Tuesday: One Zero-Day and Five Critical Vulnerabilities Among 63 CVEs
Zero-Day Vulnerability in Windows Kernel CVE-2025-62215 is an Important elevation of privilege vulnerability affecting Windows kernel…
How the Falcon Platform Delivers Fast, CISO-Ready Executive Reports
Most exposure reporting is still slow, error-prone, and disconnected from reality. Analysts spend hours collecting and…
OpenAI’s Atlas browser promises ultimate convenience. But the glossy marketing masks safety risks
Last week, OpenAI unveiled ChatGPT Atlas, a web browser that promises to revolutionise how we interact…
How To Fix the “SSL_ERROR_RX_RECORD_TOO_LONG” Error in Firefox
Seeing the SSL_ERROR_RX_RECORD_TOO_LONG message in Firefox? This error usually means your browser or server isn’t handling HTTPS…
Cache poisoning vulnerabilities found in 2 DNS resolving apps
“In specific circumstances, due to a weakness in the Pseudo Random Number Generator (PRNG) that is…
How Falcon Exposure Management’s ExPRT.AI Predicts What Attackers Will Exploit
Nearly 40,000 vulnerabilities were disclosed in 2024.1 Security teams are overwhelmed, especially those relying on outdated…
Windows 10 End of Support: How to Stay Protected
Today marks a significant milestone in the technology landscape. As of October 14, 2025, Microsoft has…
CrowdStrike Named a Frost Radar™ Leader in Cloud Workload Protection Platforms
Strengths Recognized in the Frost Radar We believe CrowdStrike’s inclusion as a Leader in the 2025…
Announcing Threat AI: Security’s First Agentic Threat Intelligence System
CrowdStrike is unveiling groundbreaking innovations across Counter Adversary Operations. Threat AI, a system of AI-powered agents…
Protect AI Development with Falcon Cloud Security
For homegrown models, Falcon Cloud Security surfaces training data, model artifacts, experiment scripts, and package dependencies….
Microsoft’s Entra ID vulnerabilities could have been catastrophic
“Microsoft built security controls around identity like conditional access and logs, but this internal impression token…
Falcon for IT Redefines Vulnerability Management with Risk-based Patching
CrowdStrike is introducing Risk-based Patching in CrowdStrike Falcon® for IT to close the gap between security…
September 2025 Patch Tuesday: Two Publicly Disclosed Zero-Days and Eight Critical Vulnerabilities Among 84 CVEs
Publicly Disclosed Zero-Day Vulnerability in Windows SMB CVE-2025-55234 is an Important elevation of privilege vulnerability affecting…
Secure AI at Machine Speed: Defending the Growing Attack Surface
Core Technology that Powers Security for AI What follows is a breakdown of the core Falcon…
What are ShinyHunters, the hackers that attacked Google? Should we all be worried?
In mid-August, ShinyHunters posted on Telegram they have been working with known threat actors Scattered Spider…
CrowdStrike Named a Leader in 2025 IDC MarketScape for Exposure Management
A Leader in Exposure Management We believe CrowdStrike’s inclusion as a Leader in the 2025 IDC…
MURKY PANDA: A Trusted-Relationship Threat in the Cloud
Since late 2024, CrowdStrike Counter Adversary Operations has observed significant activity conducted by MURKY PANDA, a…
August 2025 Patch Tuesday: One Publicly Disclosed Zero-Day and 13 Critical Vulnerabilities Among 107 CVEs
Publicly Disclosed Zero-Day Vulnerability in Windows Kerberos CVE-2025-53779 is a Moderate elevation of privilege vulnerability affecting…