Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

Data Leakage: AI's Plumbing Problem

Sensitive information disclosure ranks on the OWASP Top 10 for LLM Applications, and for good reason. When AI-powered applications inadvertently expose private data like personally identifiable information (PII), financial records, health information, API keys, or proprietary business intelligence, the consequences cascade quickly: regulatory violations, competitive disadvantage, and shattered user trust.

CrowdStrike Achieves 100% Detection, 100% Protection, and Zero False Positives in 2025 MITRE ATT&CK Enterprise Evaluations

The CrowdStrike Falcon platform delivered flawless 100% detection, 100% protection, and zero false positives in the 2025 MITRE ATT&CK Enterprise Evaluations, the industry's most demanding and comprehensive cross-domain security assessment to date. CrowdStrike's results demonstrate the precision and real-world effectiveness of the AI-native Falcon platform, which excelled in MITRE's expanded evaluation — now spanning endpoint, identity, and cloud security across hybrid environments.

Falcon Shield Evolves with AI Agent Visibility and Falcon Next-Gen SIEM Integration

CrowdStrike is introducing two powerful innovations in CrowdStrike Falcon Shield to stop identity-based attacks in the AI era: a centralized view of AI agents across platforms and the integration of first-party SaaS telemetry into CrowdStrike Falcon Next-Gen SIEM — the industry’s first native integration of SaaS security posture management (SSPM) and next-gen SIEM.

Indirect Prompt Injection Attacks: A Lurking Risk to AI Systems

The rapid adoption of AI has introduced a new, semantic attack vector that many organizations are ill-prepared to defend against: prompt injection. While many security teams understand the threat of direct prompt injection attacks against AI agents developed by their organizations, another more subtle threat lurks in the shadows: indirect prompt injection attacks.

Unveiling WARP PANDA: A New Sophisticated China-Nexus Adversary

Throughout 2025, CrowdStrike has identified multiple intrusions targeting VMware vCenter environments at U.S.-based entities, in which newly identified China-nexus adversary WARP PANDA deployed BRICKSTORM malware. WARP PANDA exhibits a high level of technical sophistication, advanced operations security (OPSEC) skills, and extensive knowledge of cloud and virtual machine (VM) environments.

CrowdStrike Leverages NVIDIA Nemotron in Amazon Bedrock to Advance Agentic Security

Adversaries are increasingly adopting AI technology to make their cyber operations faster, more efficient, and harder to detect. To stay ahead, defenders need intelligent systems capable of reasoning and acting with the same speed and accuracy as the adversary. CrowdStrike empowers defenders with the CrowdStrike Falcon platform, our agentic security platform that is fueled by AI built and governed by experts who understand the mission of defense.

CrowdStrike Unveils Real-Time Cloud Detection and Response Innovations

CrowdStrike is announcing new cloud detection and response (CDR) capabilities to help SOC teams reduce mean time to respond (MTTR) and strengthen protection across hybrid and multi-cloud environments. These include new Real-Time Cloud Detections in CrowdStrike Falcon Cloud Security and Automated Cloud Response Actions.

Transform AWS Security Operations with Falcon Next-Gen SIEM

CrowdStrike is redefining how SOC teams turn cloud data into actionable intelligence by unifying speed, scale, and cost efficiency in one platform built for the cloud and AI era. Together with AWS, today we are announcing new integrations and consumption options designed to further simplify how customers secure and operationalize workloads on Amazon Web Services (AWS).

Falcon Data Protection for Cloud Extends DSPM into Runtime

In a cloud-first world, sensitive data moves quickly between microservices, APIs, SaaS applications, and storage services. CrowdStrike Falcon Data Protection for Cloud, now generally available, delivers runtime visibility and protection for sensitive data in motion so organizations have continuous insight into how data moves, when it’s accessed, and where it’s at risk.

CrowdStrike Research: Security Flaws in DeepSeek-Generated Code Linked to Political Triggers

In January 2025, China-based AI startup DeepSeek (深度求索) released DeepSeek-R1, a high-quality large language model (LLM) that allegedly cost much less to develop and operate than Western competitors’ alternatives. CrowdStrike Counter Adversary Operations conducted independent tests on DeepSeek-R1 and confirmed that in many cases, it could provide coding output of quality comparable to other market-leading LLMs of the time.