CrowdStrike invests in Abnormal Security

CrowdStrike's strategic investment vehicle, the CrowdStrike Falcon Fund, has invested in Abnormal Security, the leading behavioral AI-based email security platform.

As part of the investment, CrowdStrike and Abnormal are also entering into a strategic technology partnership that integrates the CrowdStrike Falcon platform with the Abnormal platform to offer best-in-class email and endpoint attack detection and response with automated account remediation. As part of this partnership, Abnormal has also joined the CrowdXDR Alliance and the two companies will plan to bring an XDR integration to market.

“As a former CISO responsible for protecting hundreds of thousands of employees, I observed that attacks were increasingly becoming multi-channel, and this trend has grown exponentially in recent years,” said Stephen Ward, managing director at Insight Partners. “It’s exciting to see two market leaders, Abnormal Security and CrowdStrike, come together to forge a strategic partnership and deliver a powerful XDR-driven integration. I’m confident that this partnership can help organizations stop sophisticated attacks across a broad surface area and allow security leaders to get the most from their current solutions.”

The initial technology integration between Abnormal and CrowdStrike delivers bi-directional threat detection and response. When the CrowdStrike Falcon platform detects risk, an account takeover case is automatically created within the Abnormal platform. Security analysts, or autonomous policies, can then take rapid action: forcing step-up authentication, logging out users, terminating sessions or mandating a password reset. Alternatively, when Abnormal detects a compromised email account, a real-time alert automatically adds the targeted user to the Falcon Watched Users list for re-authentication and investigation.

“Email and endpoint devices are highly attacked entry points into an organization, and while rapid detection and response is key, it has been limited by the manual effort required to integrate siloed data from multiple solutions,” said Evan Reiser, co-founder and chief executive officer at Abnormal Security. “I’m thrilled about this investment from CrowdStrike and the partnership between our two market-defining businesses, as we break down data silos and deliver consolidated solutions for the XDR era.”

The CrowdStrike Falcon Fund is a cross-stage investment fund and the largest corporate venture arm in the cybersecurity industry. The program is designed to build an ecosystem of next-generation security leaders that share a common mission through a unique combination of investment and deep technical integrations with the CrowdStrike Falcon platform, giving CrowdStrike customers access to cutting-edge third-party capabilities.

“The premise of the CrowdStrike Falcon Fund is to invest in companies that are redefining key security categories and protecting customers against adversaries operating on evolving attack paths. Abnormal Security’s innovative risk-aware, AI-based security platform offers high-efficacy protection against sophisticated email attacks and automatic remediation of compromised accounts, making them both an attractive investment and technology partner,” said Michael Sentonas, president at CrowdStrike. “Their behavioral AI vision is closely aligned with CrowdStrike’s AI/ML approach to cybersecurity and we look forward to closely partnering with them to take on modern adversaries and stop breaches.”

Cradlepoint 5G routers ensure the continuity needed to carry out Avon FRS duties.
Commvault has introduced new security capabilities across its entire portfolio.
Kyndryl has unveiled a Cybersecurity Incident Response and Forensics (CSIRF) service to help customers proactively prepare for and respond to threats by applying the latest threat intelligence and experience from Kyndryl’s deep domain security experts.
Healthcare workforce platform used by 37,000 clinicians supports staffing for the U.K.’s National Health Service; Lookout Secure Cloud Access provides visibility into usage and access of all corporate data.
Cisco Panoptica will now provide end-to-end lifecycle protection for cloud native application environments, including code and build protection.
The company’s vision for Cisco Networking Cloud will create a simpler network management platform experience to help customers easily access and manage all Cisco networking products from one place.
CipherTrust Data Security Platform as-a-Service allows businesses to rapidly deploy and scale key management and data security services without the need to manage hardware or fund upfront investments.
Research reveals top vendor marketing strategies required to influence buyer awareness and purchasing decisions during challenging economic times.