SecurityBrief US - Technology news for CISOs & cybersecurity decision-makers
United States

Guides

#
cloud security
#
cybersecurity
#
endpoint protection
#
firewalls
#
ransomware

Search

Digital illustration interconnected human robotic faces machine icons protecting identities hybrid it
#
PAM
#
Cloud Security
#
Advanced Persistent Threat Protection

CrowdStrike unveils Falcon to protect every digital identity type

Fri, 15th Aug 2025
Author image
By Melvin Hipolito, Editor

CrowdStrike has introduced Falcon Next-Gen Identity Security, a unified solution designed to secure every identity type, including human, non-human, and AI agents, across hybrid IT environments.

According to CrowdStrike's 2025 Threat Hunting Report, identity has risen to become the fastest-growing attack vector, with 81% of interactive intrusions now occurring without malware. Attackers are increasingly using valid credentials hijacked from human users, service accounts, and AI agents to move across endpoints, cloud services, and SaaS applications undetected.

The new Falcon Next-Gen Identity Security aims to counter these threats by bringing together controls including initial access prevention, modern privileged access management (PAM), identity threat detection and response (ITDR), SaaS identity security, and agentic AI protection within a single platform. This approach is intended to eliminate the risks and inefficiencies associated with using multiple standalone tools.

Mike Sentonas, President at CrowdStrike, said,

"Organisations need trusted identity security now, not months or years from now. CrowdStrike provides what customers need most in a unified platform: modern identity security by design, without architectural trade-offs and integration debt. Access in today's enterprise is dynamic and unpredictable, with identities spanning users, machines, and AI agents operating across hybrid environments in real time. The Falcon platform was built to manage this complexity, providing the speed, scale, and precision organizations need to stop modern identity attacks."

CrowdStrike's platform is designed to function across all identity types throughout the full lifecycle in both on-premises and cloud environments, thereby addressing blind spots and reducing complexity caused by piecemeal solutions. The product is delivered through the Falcon platform with a single lightweight sensor and managed from a single console.

Attack surface expansion

The company highlights that modern adversaries have expanded their focus to include non-human identities such as machine service accounts and autonomous AI agents. These identities can possess wide-reaching and persistent access across applications and systems, increasing both the size and severity of the organisational attack surface. Attackers often exploit these identities to move laterally through multiple domains, including endpoint, identity, cloud, and SaaS systems, bypassing traditional identity and access management (IAM) and privileged access management (PAM) defences.

Falcon Next-Gen Identity Security aims to address these risks by providing continuous protection across all identity types and environments. The solution is powered by CrowdStrike's agentic AI, which supports autonomous threat analysis and response, allowing security teams to detect, investigate, and mitigate identity-based attacks in real time from a unified platform.

Integration and deployment

CrowdStrike states that organisations can deploy the solution rapidly to strengthen identity security without waiting for integrations or managing fragmented capability sets across disparate platforms. The platform claims to provide real-time visibility, dynamic access enforcement, and autonomous response for every identity and across all domains.

Core capabilities

Falcon Next-Gen Identity Security consolidates four primary functions:

  • Initial access prevention – Uses endpoint signals, threat intelligence, and AI models trained on large data volumes to authenticate trusted identities, dynamically blocking threats prior to initial access.
  • Modern privileged access management (PAM) – Enforces just-in-time access and eliminates standing privileges, with dynamic adjustment based on real-time risk to secure sensitive systems in hybrid and cloud environments.
  • Identity threat detection and response (ITDR) – Detects identity-based attacks in real time through cross-domain telemetry and AI, enforcing policy and blocking lateral movement or privilege escalation.
  • SaaS identity security – Identifies SaaS misconfigurations, highlights risky behaviour, and governs overprovisioned access for all identities within cloud-first applications.

The integrated solution aims to provide end-to-end visibility, control, and protection of identities and privileges. By using a cloud-native approach with a single management console, organisations can reduce the complexity of their security infrastructure while addressing risks that stem from hybrid environments and increasingly diverse identity populations.

CrowdStrike emphasises that its Falcon platform enables what it describes as rapid deployment and immediate time-to-value for organisations seeking to strengthen identity security measures across both traditional and modern IT infrastructure.

Related stories
Flare sees rapid MSSP uptake of external threat intel
Palo Alto revamps NextWave to reward AI security platforms
Chainguard hits 500m container manifests with AI boost
DigiCert sees record UltraDNS DDoS surge in December 2025
Arctic Wolf named Chubb’s preferred MDR cyber partner

Top stories

Siemens unveils virtualised substation protection platform
Cayosoft, XMS to bolster US War Department identity
Portal26 unveils AI tool to measure GenAI business impact
Sygnia uncovers global law firm recovery scam network
Guardsquare buys Verimatrix XTD to boost mobile security