CrowdStrike updates exposure management platform

CrowdStrike has added additional capabilities to its Falcon Exposure Management platform, aimed at enabling security teams to identify and remediate high-risk vulnerabilities in network devices. The tools are able to root out vulnerabilities in routers, switches, firewalls and other technologies in real time, without the need for additional scanners, agents or hardware.

Features include the ability to conduct real-time, continuous network assessments, obviating the need to rely on outdated network scanning tools. CrowdStrike says that leveraging its existing lightweight agent as a network scanner, the Falcon platform can provide instant, continous assessment with no additional set-up requirements.

The platform is now also leveraging AI to help pinpoint the 5% of vulnerabilities driving an estimated 95% of risks. The company says it is able to provide a single, consolidated view of exposures and attack paths across endpoints. Uses taking advantage of the Falcon Fusion SOAR platform are also able to automatically remediate discovered risks in real time before they can be exploited.

The upgrades have also delivered security improvements, with teams able to reduce critical vulnerabilities by up to 98% due to the platform’s threat prevention, detection and response capabilities.

CrowdStrike CTO Elia Zaitsev said bringing network scanning to the CrowdStrike Falcon platform has consistently been among customers’ top demands.

“For too long, organisations have had to rely on hardware-dependent, difficult-to-deploy solutions with outdated risk models and static CVSS scores, requiring external threat feeds to even attempt prioritisation,” he said. “With the Falcon platform, everything is built in natively ... allowing teams to extend adversary-based risk mitigation to network devices with a single click, meeting the demand for even greater consolidation on CrowdStrike.”

Image credit: iStock.com/ArtemisDiana