CLOUD-DELIVERED ENDPOINT PROTECTION
PREVENTS, DETECTS, & RESPONDS
TO ATTACKS IN REAL-TIME
As shown in the detection dashboard, Crowdstrike Falcon protects against known and unknown malware, but also against malware free techniques.
An Admin can customize settings for the detection and prevention analysis of Machine Learning to better suit their users...
In this instance CrowdStrike Falcon has analyzed and convicted this file as malicious. This is good against malware, but what about malware free attacks?
Sophisticated attackers will not limit their tactics to the use of malware and exploits. This is why CrowdStrike Falcon uses Indicators of attacks (IOAs).
Here CrowdStrike Falcon has detected an attacker setting
up a back door using an advanced technique.
IOAs also effect Machine Learning protection against ransomware. Here ransomware activity was detected and blocked. Now let’s see how you can respond.
Based on the suspicious activity found by CrowdStrike Falcon, you can contain the system. But you might also want to investigate.
The Endpoint Detection Response function provides visibility that goes beyond the detection information. Let’s see what else happened on that system.
In seconds, it gives you full visibility over all the other activities that took place on that endpoint.
You can also retroactively search your environments for IOCs such as hash values. But what if the attacker is extremely quiet and sophisticated?
Falcon Overwatch is a team of elite cyber security analysts investigating subtle signs of attacks on your behalf. They will alert you at any sign of suspicious activity.
Ready to Learn More