CrowdStrike unveiled a groundbreaking feature called “1-Click XDR. that automatically detects and safeguards vulnerable cloud workloads by promptly deploying the CrowdStrike Falcon agent.
The leading global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platforms for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data.
By introducing agent-based and agentless advancements, customers are empowered to streamline their cloud security infrastructure by consolidating multiple point products into a unified platform. The new comprehensive approach ensures complete protection throughout the lifecycle of cloud security.
Matt Bellingeri, CISO of CoreWeave and a CrowdStrike Falcon Security customer saidm “As a cloud provider specialised in supporting GPU-intensive applications such as generative AI, we need a partner to help make sure that our infrastructure is secure and that we have visibility into what we’re running,”
“Having both agent and agentless capabilities in the same platform is extremely important to us. CrowdStrike gives us high confidence in our security with zero impact on performance.” said Bellingeri
“CrowdStrike enables us to see into every asset that we own – including endpoints, cloud nodes, which applications are installed, what services are running and more.” he said.
The 2023 CrowdStrike Global Threat Report revealed a significant increase of 95% in cloud exploitation incidents. Furthermore, it highlighted that approximately 36% of cloud environments exhibited insecure default settings provided by cloud service providers.
Disturbingly, cases involving threat actors specifically targeting cloud environments nearly tripled. In response to these alarming trends and to aid organisations in preventing breaches across the entire spectrum from endpoints to the cloud, CrowdStrike has expanded its acclaimed platform with Falcon Cloud Security.
CrowdStrike Falcon Cloud Security offers cutting-edge capabilities as a Cloud Native Application Protection Platform (CNAPP).
The comprehensive solution combines Cloud Workload Protection (CWP), Cloud Security Posture Management (CSPM), Cloud Infrastructure Entitlement Management (CIEM), and container security into one unified platform.
Additionally, CrowdStrike provides top-tier managed services to further enhance the offerings of this platform. With Falcon Cloud Security, organizations can leverage a single, integrated solution to effectively safeguard their cloud-native applications and infrastructure.
New capabilities for CrowdStrike Falcon Cloud Security include:
- 1-Click XDR: Organizations can sweep their cloud environment with native agentless visibility to identify unprotected workloads and automatically deploy the CrowdStrike Falcon agent for end-to-end runtime protection.
- Agentless Snapshot Scanning: When an agent can’t be installed, organizations can gain full visibility into cloud workload risk by detecting vulnerabilities and installed applications – starting with support for AWS.
- Complete Cloud Attack Path Visualization: Organizations can see a unified view of the attack path, from host to cloud, to detect, prevent and remediate cloud threats, without the complexity of multiple consoles and agents.
- Additional Updates Include: An updated Compliance Dashboard (now supporting CIS, NIST, PCI, SOC2 and custom frameworks), new Infrastructure as Code (IaC) Security, and an integrated Kubernetes Admission Controller.
Raj Rajamani, chief product officer, DICE at CrowdStrike says organisations clearly need complete visibility and protection into cloud workloads, no matter where they exist.
“Preventing a breach requires the tight, native integration of agent and agentless capabilities across CWP, CSPM and CIEM to stop breaches from both adversaries and human error,”
“The latest innovations from CrowdStrike enable DevSecOps teams to proactively understand adversaries, identify unprotected cloud workloads and deploy protection with one click of a button, and use snapshots to maintain visibility and protection when an asset can’t support an agent,” said Rajamani,