AUSTIN, Texas and RSA Convention 2022, SAN FRANCISCO – June 6, 2022 – CrowdStrike (Nasdaq: CRWD), a frontrunner in cloud-delivered safety of endpoints, cloud workloads, id and information, at present launched Humio for Falcon, a brand new functionality that extends information retention of CrowdStrike Falcon telemetry for as much as one yr or longer, enhancing risk analytics and risk searching talents for organizations whereas serving to them meet compliance necessities.
Humio for Falcon brings collectively an industry-leading safety platform in CrowdStrike Falcon, with the highly effective search capabilities of CrowdStrike’s centralized logging providing, Humio. The brand new functionality offers safety groups the power to retailer safety and IT telemetry from the Falcon platform, which is enriched and contextualized throughout endpoints, workloads and identities to handle the problem of operationalizing the ever-growing volumes of information. Humio for Falcon helps safety groups analyze and act on all information – each real-time and historic information – of their surroundings. With longer information retention because of superior compression of ingested information, safety groups can uncover and detect potential threats inside their environments with deep, contextual analytics and sub-second search outcomes at any scale by a contemporary, index-free structure.
“Whereas the information accessible to risk hunters and incident responders grows at an exponential price, they’re routinely compelled to cut back the period they’ll retailer this info,” stated Michael Sentonas, chief know-how officer at CrowdStrike. “Humio for Falcon solves this drawback by delivering scalable and cost-effective information retention that allows risk hunters and incident responders to look again and see if and when an adversary was lively in an IT surroundings and reconcile each system they touched. It’s actually a game-changer within the {industry}.”
Humio for Falcon gives:
- Risk searching and troubleshooting at unprecedented scale: By retaining Falcon information for prolonged intervals of time, safety groups can proactively search and uncover hidden threats within the surroundings with sub second pace, take away superior persistent threats (APTs) by sifting by the information to detect irregularities that may counsel potential malicious conduct and higher prioritize and deal with vulnerabilities earlier than they are often weaponized.
- Longer information retention to assist meet compliance necessities and diminished value: With scalable storage and superior compression methods, clients can retailer and handle Falcon information for one or a number of years, based mostly on buyer necessities. This wealth of real-time and historic information permits completeness and accuracy of investigation and evaluation, leading to quicker risk remediation.
- New person interface (UI) dashboard visualization for quick and customized search: Function-rich question language and index-free searches permits safety groups to run queries on Falcon information and get speedy solutions. Get the power to seamlessly ingest, mixture and search by huge safety and IT telemetry and achieve helpful, contextual insights with sub-second latency searches for assembly real-world safety necessities, together with superior risk and vulnerability investigations.
“With Humio for Falcon, we had been in a position to save roughly $150,000 within the first yr,” stated Tom Sipes, director, IT safety and compliance at Tuesday Morning. “Additionally, the power to save lots of information for an prolonged time interval is crucial. Once we detect an indicator of compromise, we will return in time and analyze your entire assault chain to speed up investigations and pinpoint points extra rapidly.”
Further Sources
- For extra info on Humio for Falcon, please go to our weblog.
- To look at a Humio for Falcon demo, please go to this web page.
- Do you know? Humio can ingest over one petabyte of information per day. Humio was additionally named “Log Analytics Resolution of the Yr” by the Knowledge Breakthrough Awards for 2022.
About CrowdStrike
CrowdStrike (Nasdaq: CRWD), a worldwide cybersecurity chief, has redefined fashionable safety with one of many world’s most superior cloud-native platforms for shielding crucial areas of enterprise danger – endpoints and cloud workloads, id and information.
Powered by the CrowdStrike Safety Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of assault, risk intelligence, evolving adversary tradecraft and enriched telemetry from throughout the enterprise to ship hyper-accurate detections, automated safety and remediation, elite risk searching and prioritized observability of vulnerabilities.
Function-built within the cloud with a single lightweight-agent structure, the Falcon platform delivers speedy and scalable deployment, superior safety and efficiency, diminished complexity and speedy time-to-value.