Security | Threat Detection | Cyberattacks | DevSecOps | Compliance

CrowdStrike has been named the Overall Leader in the 2025 KuppingerCole Leadership Compass for Identity Threat Detection and Response (ITDR), positioned furthest to the right. This validates our ongoing mission to secure every identity — human, non-human, and AI agent. We are recognized as a Leader across all key categories: Product, Innovation, Market, and Overall Ranking.

Most exposure reporting is still slow, error-prone, and disconnected from reality. Analysts spend hours collecting and formatting data using different tools that produce conflicting priorities. Reports are bloated with raw CVE lists that lack context and rarely connect to business impact. They are often delayed, arriving after the adversaries have moved. While teams struggle with outdated reports, adversaries are seeking new ways to gain initial access.

CrowdStrike Falcon for XIoT is gaining new innovations to protect operational technology (OT) and XIoT environments as they grow larger and more interconnected. The rapid expansion of industrial systems has led to blind spots across segmented networks, unmanaged devices, and legacy infrastructure. Most OT security tools, siloed by design, fail to see which assets are connected or how they communicate.

CrowdStrike is accelerating our vision for the SOC with the launch of new, specialized agents built to tackle some of the toughest modern challenges in security operations: faster data pipeline creation, simpler custom app creation, and continuous, authenticated exposure scanning. Earlier this year, we charted a path toward the agentic SOC — where security teams command fleets of intelligent agents that reason, decide, and act at machine speed while under defender control.

AI has transformed both how attackers operate and how defenders must respond. Today’s adversaries use AI to shift tactics in real time, forcing defenders to react at unprecedented speed. Many SOCs struggle to keep pace due to the limits of legacy automation. Even the most mature playbooks can’t anticipate every scenario or data variation, because playbooks are predictable — but adversaries aren’t.

Europe remains a prime target for global adversaries. Financially motivated eCrime groups continue to target the region as espionage and hacktivism escalate amid geopolitical turmoil stemming from ongoing conflicts. The CrowdStrike 2025 European Threat Landscape Report, based on frontline intelligence from CrowdStrike’s elite threat hunters and intelligence analysts, provides a definitive view of adversaries operating within or targeting Europe.

The CrowdStrike Falcon platform has once again proven its leadership in endpoint protection. In SE Labs’ September 2025 Enterprise Endpoint Security (EPS) evaluation, the Falcon platform earned the AAA EPS certification and achieved 100% Protection Accuracy, 100% Legitimate Accuracy, and 100% Total Accuracy, with zero false positives. In addition to the EPS certification, CrowdStrike was named the winner in three categories at this summer’s 2025 SE Labs Security Awards ceremony.

We're proud to announce that CrowdStrike has been recognized as the Growth and Innovation Leader in the 2025 Frost Radar for SaaS Security Posture Management (SSPM) for the second consecutive time. This recognition validates our commitment to providing security solutions for some of the most pressing threats modern organizations face. Threat actors are exploiting business-critical SaaS applications that power modern businesses.

In September 2025, a critical vulnerability (CVE-2025-54918) was discovered affecting Domain Controllers running LDAP or LDAPS services. This vulnerability allows attackers to elevate privileges from a standard domain user to SYSTEM level access, potentially compromising entire Active Directory environments.

Security teams face overwhelming complexity. Enterprises employ a multitude of security tools, each with its own console, siloed data, and disconnected workflows that slow investigations and increase risk. This fragmentation is especially dangerous as adversaries grow faster and smarter and pursue cross-domain attacks.