Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

AI agents are being rapidly embedded into the SaaS ecosystem to streamline operations, trigger complex workflows, and interact with sensitive data and systems. From automating calendar updates to executing code and accessing cloud data stores, they are becoming integral to business processes. But with this integration comes risk. AI agents are often quickly deployed across SaaS environments by employees, without centralized tools to govern them.

The AI battleground is here. Adversaries are weaponizing AI to launch attacks with unprecedented scale, speed, and effectiveness. In response, defenders are turning to AI as an analyst force-multiplier, using it to offload repetitive tasks, accelerate decision-making, and scale expertise across the SOC.

Today’s enterprising adversaries are weaponizing AI to scale operations, accelerate attacks, and target the autonomous AI agents quickly transforming modern businesses. The CrowdStrike 2025 Threat Hunting Report details this new chapter in the threat landscape. This year’s report, based on frontline intelligence from CrowdStrike’s elite threat hunters and intelligence analysts, examines how threat actors are using AI to do more with less.

CrowdStrike has been named a Leader and Fast Mover in the 2025 GigaOm Identity Security Posture Management (ISPM) Radar Report, recognizing the power of CrowdStrike Falcon Identity Protection to detect and stop today’s identity-based threats.

Recently, five popular NPM (Node Package Manager) packages were compromised and modified to deliver a malicious DLL, dubbed “Scavenger”. The malware pushed via these compromised NPM packages executes in two stages: an initial first-stage loader, followed by a second-stage infostealer. NPM is the package manager for the Node.js JavaScript platform, which allows developers to share and manage JavaScript libraries and tools.

Container escape represents one of the most significant security threats in modern cloud computing environments. This allows attackers to break free from container isolation mechanisms, potentially leading to complete compromise of host systems and broader cloud infrastructure.

CrowdStrike Falcon Complete Next-Gen MDR has been ranked in the 2025 Frost Radar: Global Managed Detection and Response, securing the top placement among 19 vendors and leading in both Innovation and Growth. This recognition validates CrowdStrike’s leadership in delivering round-the-clock managed detection and response (MDR) protection through the combination of elite expertise and AI-accelerated investigation and response powered by the AI-native CrowdStrike Falcon platform.

Beginning on July 18, 2025, at approximately 0700 UTC, CrowdStrike Falcon Complete Next-Gen MDR and CrowdStrike Falcon Adversary OverWatch identified a wave of Microsoft SharePoint exploitation attempts by an unknown adversary. Two distinct zero-day vulnerabilities were made publicly available: a critical remote code execution vulnerability (CVE-2025-53770) and a server spoofing vulnerability (CVE-2025-53771).

CrowdStrike is proud to be named a Strong Performer in The Forrester Wave: Unified Vulnerability Management Solutions, Q3 2025. We believe this recognition underscores the strength of CrowdStrike’s vision, the pace of our innovation, and the rapid adoption of CrowdStrike Falcon Exposure Management by customers transforming their vulnerability management, just 24 months after its launch.

CrowdStrike has once again been named a Leader in the 2025 Gartner Magic Quadrant for Endpoint Protection Platforms (EPP).