AUSTIN, Texas and RSA Convention 2022, SAN FRANCISCO – June 6, 2022 – CrowdStrike (Nasdaq: CRWD), a frontrunner in cloud-delivered safety of endpoints, cloud workloads, id and information, in the present day launched Humio for Falcon, a brand new functionality that extends information retention of CrowdStrike Falcon telemetry for as much as one 12 months or longer, enhancing menace analytics and menace looking skills for organizations whereas serving to them meet compliance necessities.
Humio for Falcon brings collectively an industry-leading safety platform in CrowdStrike Falcon, with the highly effective search capabilities of CrowdStrike’s centralized logging providing, Humio. The brand new functionality offers safety groups the power to retailer safety and IT telemetry from the Falcon platform, which is enriched and contextualized throughout endpoints, workloads and identities to deal with the problem of operationalizing the ever-growing volumes of knowledge. Humio for Falcon helps safety groups analyze and act on all information – each real-time and historic information – of their setting. With longer information retention resulting from superior compression of ingested information, safety groups can uncover and detect potential threats inside their environments with deep, contextual analytics and sub-second search outcomes at any scale via a contemporary, index-free structure.
“Whereas the info accessible to menace hunters and incident responders grows at an exponential charge, they’re routinely compelled to scale back the length they’ll retailer this info,” mentioned Michael Sentonas, chief know-how officer at CrowdStrike. “Humio for Falcon solves this drawback by delivering scalable and cost-effective information retention that allows menace hunters and incident responders to look again and see if and when an adversary was energetic in an IT setting and reconcile each system they touched. It’s actually a game-changer within the {industry}.”
Humio for Falcon offers:
- Risk looking and troubleshooting at unprecedented scale: By retaining Falcon information for prolonged durations of time, safety groups can proactively search and uncover hidden threats within the setting with sub second velocity, take away superior persistent threats (APTs) by sifting via the info to detect irregularities that may counsel potential malicious conduct and higher prioritize and handle vulnerabilities earlier than they are often weaponized.
- Longer information retention to assist meet compliance necessities and lowered price: With scalable storage and superior compression methods, prospects can retailer and handle Falcon information for one or a number of years, primarily based on buyer necessities. This wealth of real-time and historic information allows completeness and accuracy of investigation and evaluation, leading to quicker menace remediation.
- New person interface (UI) dashboard visualization for quick and customized search: Characteristic-rich question language and index-free searches permits safety groups to run queries on Falcon information and get speedy solutions. Get the power to seamlessly ingest, mixture and search via huge safety and IT telemetry and acquire helpful, contextual insights with sub-second latency searches for assembly real-world safety necessities, together with superior menace and vulnerability investigations.
“With Humio for Falcon, we have been in a position to save roughly $150,000 within the first 12 months,” mentioned Tom Sipes, director, IT safety and compliance at Tuesday Morning. “Additionally, the power to save lots of information for an prolonged time interval is vital. After we detect an indicator of compromise, we will return in time and analyze your complete assault chain to speed up investigations and pinpoint points extra rapidly.”
Further Sources
- For extra info on Humio for Falcon, please go to our weblog.
- To observe a Humio for Falcon demo, please go to this web page.
- Do you know? Humio can ingest over one petabyte of knowledge per day. Humio was additionally named “Log Analytics Answer of the 12 months” by the Knowledge Breakthrough Awards for 2022.
About CrowdStrike
CrowdStrike (Nasdaq: CRWD), a world cybersecurity chief, has redefined fashionable safety with one of many world’s most superior cloud-native platforms for safeguarding vital areas of enterprise threat – endpoints and cloud workloads, id and information.
Powered by the CrowdStrike Safety Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of assault, menace intelligence, evolving adversary tradecraft and enriched telemetry from throughout the enterprise to ship hyper-accurate detections, automated safety and remediation, elite menace looking and prioritized observability of vulnerabilities.
Function-built within the cloud with a single lightweight-agent structure, the Falcon platform delivers fast and scalable deployment, superior safety and efficiency, lowered complexity and speedy time-to-value.
