CrowdStrike, Inc. is an American cybersecurity technology company based in Irvine, California, and a wholly owned subsidiary of CrowdStrike Holdings, Inc. The company provides endpoint security, threat intelligence, and incident response services. Founded in 2011, CrowdStrike has customers in more than 170 countries  and offices in Northern America, EMEA, and APAC. The company has detected, prevented, and attributed complex cyber attacks, including the Sony Pictures hack, the DNC email leak, as well as nation state, criminal, and hacktivist adversaries.
History and growth
CrowdStrike was co-founded by entrepreneur George Kurtz (CEO), Dmitri Alperovitch (CTO), and Gregg Marston (CFO, retired). In 2012, Shawn Henry, a former FBI executive who lead both the FBI’s criminal and cyber Divisions, was hired to lead sister company CrowdStrike Services, Inc., which is focused on proactive and incident response services.
The company quickly gained notoriety for providing threat intelligence and attribution to nation state actors conducting economic espionage and IP theft. This includes the outing of state-sponsored Chinese group, Putter Panda, linked to China's spying on US defense and European satellite and aerospace industries. In May 2014, supported by CrowdStrike’s reports, the US Department of Justice charged five Chinese military hackers for economic cyber espionage against US corporations. Similarly, the firm is known for uncovering the activities of Energetic Bear, an adversary group with a nexus to the Russian Federation that conducts intelligence operations against a variety of global victims with a primary focus on the energy sector.
Following the very public Sony Pictures hack, CrowdStrike produced attribution to the government of North Korea within 48 hours and demonstrated how the attack was carried out step-by-step. On May 2015, the company released its discovery of VENOM, a critical flaw in open source hypervisor called Quick Emulator (QEMU), which is used in a number of common virtualization products.
In 2014, the company launched its signature technology, the Falcon platform, that stops breaches by combining next-generation antivirus, endpoint detection and response, and proactive hunting. Also in 2014, CrowdStrike was instrumental in identifying members of PLA Unit 61486 as the perpetrators of a number of cyberattacks on U.S. infrastructure.
In July 2015 Google invested in the company's Series C funding round, which in total raised $100 million. To date, CrowdStrike has achieved total funding of $156 million, with other investors including Rackspace, Accel Partners and Warburg Pincus. According to the company, its customers include three of the 10 largest global companies by revenue, five of the 10 largest financial institutions, three of the top 10 health care providers, and three of the top 10 energy companies.
Products and Services
CrowdStrike’s core technology, the Falcon platform, is an endpoint protection software that prevents and responds to all types of attacks – both malware and malware-free. The solutions is entirely cloud-based and combines three main elements: next-generation antivirus, endpoint detection and response (EDR), and a 24/7 managed hunting service. The Falcon platform uses machine learning and graph-based big data technology to analyze and correlate billions of events in real time, providing instant visibility across all endpoints.
CrowdStrike Services offers incident response and proactive security services to major global organizations, governments, and Fortune 500 companies.
The CrowdStrike Intelligence group is a world-renowned team of analysts, intrusion experts, linguists, etc. that has gained national attention for tracking and reporting on over 70 criminal, state-sponsored, and nationalist cyber adversary groups around the world. Every year, the team produces an annual Global Threat Report that details analysis and global intelligence about notable adversaries, trends, and geopolitical developments.