TL;DR:
- CrowdStrike’s ‘Raptor’ release introduces generative AI and XDR accessibility to all users.
- Powered by CrowdStrike Falcon LogScale technology, it offers lightning-fast data collection, search, and storage for robust cybersecurity.
- Features include AI-powered incident creation, native XDR for EDR customers, a re-imagined incident workbench, a collaborative incident command center, and lightning-fast search.
- Charlotte AI, CrowdStrike’s cybersecurity analyst, gains natural language processing capabilities.
- The release will roll out to all Falcon customers in stages, beginning in late September 2023.
- Charlotte AI pricing adopts a per-endpoint model with flexible options for additional queries.
Main AI News:
In a groundbreaking move, CrowdStrike is ushering in the future of generative AI and Extended Detection and Response (XDR) accessibility with the latest iteration of its CrowdStrike Falcon platform. Termed the ‘Raptor’ release, this cutting-edge development is set to democratize the power of generative AI and XDR, making it accessible to all cybersecurity enthusiasts. Underpinned by the same robust technology as CrowdStrike’s Next-Gen SIEM offering, CrowdStrike Falcon LogScale, Raptor equips users with the capability for petabyte-scale data collection, rapid data retrieval, and seamless data storage. This empowerment is poised to drive the next wave of AI-driven cybersecurity innovations, effectively combatting the continuously evolving tactics of malicious actors and fortifying defenses against data breaches.
The essence of modern cybersecurity lies at the intersection of data and security, and traditional data utilization methods are proving inadequate against the relentless pace and sophistication of contemporary cyber threats. As Mike Sentonas, the President of CrowdStrike, aptly puts it, “Security is a data problem at its core, and traditional approaches to leveraging data are quickly proving to be no match for the speed and tradecraft of today’s adversaries.” CrowdStrike, a pioneer in cloud-scale data utilization, behavioral AI, and automation, has consistently demonstrated its prowess in stopping breaches that had eluded legacy solutions. With the introduction of the Raptor release, customers can harness the power of data and AI with unparalleled speed to outmaneuver advanced adversaries.
Scheduled to be rolled out to all CrowdStrike Falcon customers within the coming year, commencing in late September 2023, the “Raptor” release encompasses an array of transformative features:
- First AI-powered Incident Creator with Charlotte AI Investigator: This groundbreaking innovation revolutionizes the investigative landscape by automating incident creation and subsequent investigation through the implementation of AI. By commencing with a nugget of information, Charlotte AI Investigator intuitively correlates relevant contextual data into a unified incident, subsequently generating an incident summary powered by Language Model (LLM) technology. This augments the comprehensibility of security incidents for analysts of varying skill levels.
- XDR for All: Extending the capabilities of Extended Detection and Response (XDR) to all CrowdStrike EDR customers, this inclusion provides a substantial boost to the speed and thoroughness of investigations. It offers comprehensive endpoint, identity, cloud, and data protection telemetry, effectively enhancing the efficacy of security measures across the CrowdStrike platform.
- XDR Incident Workbench: An overhauled, lightning-fast user interface tailored for EDR/XDR, this feature is structured around incidents, eliminating the need for sifting through standalone alerts. It significantly accelerates investigation and response times.
- Collaborative Incident Command Center: This collaborative workspace allows real-time incident management, enabling security analysts to work seamlessly from any location at any time, while accessing a unified repository of truth.
- Lightning-Fast Search: The Raptor release introduces lightning-fast search capabilities that operate with sub-second latency. This ensures the rapid identification and eradication of adversaries and security risks by searching through massive volumes of data.
As a testament to CrowdStrike’s unwavering commitment to enhancing AI capabilities, the Raptor release also elevates the role of Charlotte AI, the cybersecurity analyst. In a private customer preview, Charlotte AI gains the capability to answer natural language questions in English and numerous other languages. This functionality leverages the vast datasets within the Falcon platform and benefits from CrowdStrike’s human-validated content, comprising the world’s most high-fidelity security data and trillions of security events. This content is continually refined through a feedback loop involving CrowdStrike’s Counter Adversary Operations and Managed Services threat intelligence and hunting experts.
The Raptor release will be systematically deployed to all existing CrowdStrike Falcon customers over the forthcoming year, with the process commencing in late September 2023. In terms of pricing for Charlotte AI, when it becomes generally available, it will adopt a straightforward and familiar per-endpoint pricing model, akin to many CrowdStrike modules. Moreover, it will include a specified allocation of Charlotte AI queries, with flexible options available for organizations requiring additional query capacity to ensure a cost-effective and tailored solution, without the burden of excessive overage charges. CrowdStrike’s commitment to democratizing AI and bolstering cybersecurity readiness remains unwavering, setting the stage for a safer digital future for all.
Conclusion:
CrowdStrike’s Raptor release is set to disrupt the cybersecurity market by democratizing AI and XDR capabilities. Its innovative features and scalability offer an edge in combating evolving cyber threats, making advanced security accessible to a broader audience. This move aligns with the industry’s shift towards proactive threat detection and response, setting the stage for a more resilient and secure digital landscape.
