CrowdStrike recently invested an undisclosed amount in security startup Abnormal Security through its investment fund CrowdStrike Falcon Fund. In addition, the two security providers will integrate each other’s technology.
With the recent investment, the provider of cloud-based security solutions and applications aims to offer even more (cloud-based) XDR capabilities for protecting their endpoints, as well as other environments.
Abnormal Security offers an AI-based security platform that uses machine learning to stop advanced email attacks and attacks on email platforms that avoid traditional protection solutions. The technology can be easily integrated into Microsoft 365 and Google Workspace.
Integration into CrowdStrike Falcon platform
An important part of the investment is for CrowdStrike to integrate Abnormal Security’s technology into its own CrowdStrike Falcon platform. With this, the security vendor intends to offer its customers email and endpoint detection and response combined with automated solutions.
More specifically, this integration should provide so-called bi-directional threat detection and response. When the CrowdStrike platform detects a risk, Abnormal Security’s platform automatically creates an account takeover case.
Security specialists, or autonomous policies, can then take immediate action, such as implementing multiple forms of authentication, logging users out, terminating sessions and even imposing password resets.
When the Abnormal platform detects a compromised e-mail account, a real-time alert adds the affected users to the Falcon Watcherd Users list. This prompts the user to re-authenticate and the breach is investigated.
Part of ecosystem
In addition, the security startup will also become part of the CrowdStrike ecosystem of partners, the CrowdXDR Alliance. The two parties also plan to develop and market a joint XDR solution.
Also read: CrowdStrike and Dell Technologies team up to secure businesses