Press release
CrowdStrike Introduces Industry’s First Cloud Threat Hunting Service Dedicated to Stopping Advanced Cloud-Based Attacks
With Falcon OverWatch Cloud Threat Hunting, organizations gain access to an elite team of threat hunters to stop breaches in cloud environments AUSTIN, Texas
About this update from Crowdstrike Holdings, Inc.
[{"type":"text","content":"\nWith Falcon OverWatch Cloud Threat Hunting, organizations gain access to an elite team of threat hunters to stop breaches in cloud environments\n\n AUSTIN, Texas & BOSTON--(BUSINESS WIRE)--\nCrowdStrike (Nasdaq: CRWD), a leader in cloud-delivered protection of endpoints, cloud workloads, identity and data, today introduced Falcon OverWatch Cloud Threat Hunting, the industry’s first standalone threat hunting service for hidden and advanced threats originating, operating or persisting in cloud environments. Armed with the industry’s first cloud-oriented indicators of attack (IOAs) for the control plane and detailed adversary tradecraft, OverWatch Cloud Threat Hunting delivers unparalleled visibility into cloud environments to observe and disrupt the most sophisticated cloud threats.\n\nRapid adoption of cloud-native architectures have opened up new, broader attack surfaces, and security teams are often left in the dark without visibility or the requisite skill sets to hunt continuously around the clock for sophisticated threats across these complex cloud environments. As a result, adversaries are finding cloud assets and exploiting them faster than security teams can discover them.\n\nLeveraging CrowdStrike’s agent-based and agentless Cloud Native Application Protection Platform (CNAPP) capabilities, Falcon OverWatch cloud threat hunters investigate suspicious and anomalous behaviors and novel attacker tradecraft. Falcon OverWatch Cloud Threat Hunting conducts 24x7x365 operations and can prevent incidents and breaches while proactively alerting customers to cloud-based attacks, including:\n\n\nAdversary activity taking place within and across cloud infrastructure for Amazon Web Services (AWS), Google Cloud Platform (GCP), Microsoft Azure and other cloud service providers.\n\n\nSophisticated hands-on-keyboard activity and zero-days that take advantage and compromise cloud workloads and containers in production.\n\n\nCloud-based IOAs, such as control plane and serverless vulnerabilities, misconfigurations, application behavior anomalies, container escapes, privilege escalations, node compromises and more.\n\n\nAttack paths that first exploit traditional IT assets to gain initial entry and pivot to applications, systems and data in the cloud.\n\n\n“CrowdStrike pioneered the concept of blending industry-leading technology with proac...