CrowdStrike Launches Insider Risk Services to Combat Insider Threats
CrowdStrike (CRWD) has launched Insider Risk Services, a comprehensive solution to combat insider threats from negligent employees, malicious insiders, and sophisticated adversaries. The announcement comes as the average cost of resolving insider threats over 12 months has reached $16.2 million.
The new services combine the CrowdStrike Falcon® cybersecurity platform with threat intelligence, hunting capabilities, and expert-led incident response. Key offerings include program and technical reviews, tabletop exercises, red team simulations, and incident response services.
The company's intelligence recently uncovered FAMOUS CHOLLIMA, a DPRK-nexus adversary group that infiltrated over 200 U.S. technology companies by disguising malicious activities as legitimate employment, demonstrating the critical need for such services.
CrowdStrike (CRWD) ha lanciato Insider Risk Services, una soluzione completa per combattere le minacce interne da parte di dipendenti negligenti, insidiosi interni e avversari sofisticati. L'annuncio arriva mentre il costo medio per risolvere minacce interne nell'arco di 12 mesi ha raggiunto 16,2 milioni di dollari.
I nuovi servizi combinano la piattaforma di cybersecurity CrowdStrike Falcon® con intelligence sui rischi, capacità di ricerca e risposta agli incidenti guidata da esperti. Le principali offerte includono revisioni programmatiche e tecniche, esercizi simulati, simulazioni di team rossi e servizi di risposta agli incidenti.
L'intelligence dell'azienda ha recentemente scoperto FAMOUS CHOLLIMA, un gruppo di avversari legato alla DPRK che ha infiltrato oltre 200 aziende tecnologiche statunitensi travestendo attività malevole come impiego legittimo, dimostrando l'assoluta necessità di tali servizi.
CrowdStrike (CRWD) ha lanzado Insider Risk Services, una solución integral para combatir las amenazas internas provenientes de empleados negligentes, internos maliciosos y adversarios sofisticados. El anuncio se realiza mientras el costo promedio de resolver amenazas internas durante 12 meses ha alcanzado 16,2 millones de dólares.
Los nuevos servicios combinan la plataforma de ciberseguridad CrowdStrike Falcon® con inteligencia sobre amenazas, capacidades de búsqueda y respuesta a incidentes liderada por expertos. Las ofertas clave incluyen revisiones programáticas y técnicas, ejercicios de simulación, simulaciones de equipos rojos y servicios de respuesta a incidentes.
La inteligencia de la empresa descubrió recientemente FAMOUS CHOLLIMA, un grupo de adversarios vinculado a la DPRK que infiltró más de 200 empresas tecnológicas estadounidenses disfrazando actividades maliciosas como empleo legítimo, lo que demuestra la necesidad crítica de tales servicios.
CrowdStrike (CRWD)는 내부 위협을 방지하기 위해 Insider Risk Services를 출시했습니다. 이 포괄적인 솔루션은 부주의한 직원, 악의적인 내부자 및 정교한 적으로부터의 위협에 대응합니다. 이 발표는 12개월 동안 내부 위협 해결 비용의 평균이 1620만 달러에 도달했다는 점에서 나온 것입니다.
새로운 서비스는 CrowdStrike Falcon® 사이버 보안 플랫폼과 위협 정보, 탐색 능력 및 전문가 주도의 사고 대응을 결합합니다. 주요 제공 사항으로는 프로그램 및 기술 검토, 테이블탑 연습, 레드 팀 시뮬레이션 및 사고 대응 서비스가 있습니다.
회사의 정보는 최근 DPRK 연관 적대 그룹인 FAMOUS CHOLLIMA를 발견했습니다. 이 그룹은 200개 이상의 미국 기술 기업에 침투하여 악의적인 활동을 합법적인 고용으로 위장하였으며, 이는 이러한 서비스의 절실한 필요성을 보여줍니다.
CrowdStrike (CRWD) a lancé Insider Risk Services, une solution complète pour lutter contre les menaces internes provenant d'employés négligents, d'initiés malveillants et d'adversaires sophistiqués. Cette annonce intervient alors que le coût moyen de résolution des menaces internes sur 12 mois a atteint 16,2 millions de dollars.
Les nouveaux services combinent la plateforme de cybersécurité CrowdStrike Falcon® avec des renseignements sur les menaces, des capacités de recherche et une réponse aux incidents dirigée par des experts. Les principales offres comprennent des examens de programmes et techniques, des exercices de table, des simulations d'équipes rouges et des services de réponse aux incidents.
Les informations de l'entreprise ont récemment révélé FAMOUS CHOLLIMA, un groupe d'adversaires lié à la DPRK qui a infiltré plus de 200 entreprises technologiques américaines en déguisant des activités malveillantes en tant qu'emploi légitime, démontrant ainsi le besoin critique de tels services.
CrowdStrike (CRWD) hat Insider Risk Services eingeführt, eine umfassende Lösung zur Bekämpfung interner Bedrohungen durch fahrlässige Mitarbeiter, böswillige Insider und anspruchsvolle Gegner. Die Ankündigung erfolgt, während die durchschnittlichen Kosten für die Behebung interner Bedrohungen über 12 Monate 16,2 Millionen Dollar erreicht haben.
Die neuen Dienste kombinieren die CrowdStrike Falcon®-Cybersecurity-Plattform mit Bedrohungsinformationen, Suchfähigkeiten und von Experten geleiteten Incident-Response-Diensten. Zu den wichtigsten Angeboten gehören programm- und technische Überprüfungen, Tischübungen, Red-Team-Simulationen und Incident-Response-Services.
Die Intelligence des Unternehmens hat kürzlich FAMOUS CHOLLIMA entdeckt, eine mit der DPRK verbundene Bedrohungsgruppe, die über 200 US-Technologieunternehmen infiltriert hat, indem sie böswillige Aktivitäten als legale Beschäftigung maskierte, was den kritischen Bedarf an solchen Services verdeutlicht.
- Launch of new revenue-generating Insider Risk Services product line
- Addresses a significant market need with insider threats costing companies $16.2M on average
- Leverages existing Falcon platform infrastructure for service delivery
- None.
Insights
CrowdStrike's strategic launch of Insider Risk Services addresses a critical gap in enterprise security, particularly notable given the
The inclusion of advanced threat intelligence and the recent uncovering of FAMOUS CHOLLIMA's activities demonstrates the platform's capability to detect sophisticated state-sponsored threats. This positions CrowdStrike to capture a larger share of the rapidly growing insider threat management market, estimated to reach
Think of it as adding a sophisticated internal security system to a house that previously only had external cameras - it's not just about keeping threats out anymore, but also monitoring and managing risks from within.
This product launch strategically expands CrowdStrike's total addressable market and creates new recurring revenue streams through service-based offerings. The timing is particularly advantageous as organizations increasingly face insider threats from remote work environments and sophisticated social engineering attacks.
The service's modular approach with program reviews, simulations and incident response capabilities allows for flexible pricing models and higher margin potential compared to traditional software licenses. This positions CrowdStrike to capture additional wallet share from existing enterprise customers while attracting new mid-market clients seeking comprehensive security solutions.
The multi-layered approach combining technology, intelligence and human expertise addresses a critical gap in traditional security frameworks. Most organizations have focused on external threats, leaving them vulnerable to insider risks that can be more damaging and harder to detect. The integration of tabletop exercises and red team simulations provides practical validation of security measures, essential for regulatory compliance and risk management.
The service's ability to detect state-sponsored threats masquerading as legitimate employees, as evidenced by the FAMOUS CHOLLIMA case, demonstrates advanced capabilities that set it apart from conventional insider threat solutions. This positions CrowdStrike as a leader in addressing sophisticated insider threats that bypass traditional security measures.
New services integrate industry-leading technology, threat intelligence and human expertise to harden defenses against insider risks
The total average cost of activities to resolve insider threats over a 12-month period has risen to
CrowdStrike Insider Risk Services empowers organizations to proactively identify and mitigate insider risks before they escalate. By combining the industry-leading threat detection and response capabilities of the CrowdStrike Falcon® cybersecurity platform with advanced threat intelligence, threat hunting, tailored assessments, program reviews and expert-led incident response, CrowdStrike delivers multi-layered defense strategies that set the standard for insider risk management.
CrowdStrike’s intelligence-driven approach recently uncovered tactics used by the DPRK-nexus adversary FAMOUS CHOLLIMA, a prolific insider threat group that infiltrated over 200 U.S. technology companies by disguising malicious activities as legitimate employment – highlighting the critical need for proactive defenses against insider risks.
Key service offerings include:
- Insider Risk Program and Technical Reviews: Identify gaps and strengthen security posture using CrowdStrike’s leading intelligence and 24/7 threat hunting capabilities.
- Tabletop Exercises and Red Team Simulations: Test defenses, enhance detection capabilities and uncover vulnerabilities through real-world insider threat scenarios.
- Incident Response: Reduce response times to swiftly contain and mitigate risk from insider incidents with expert-led services powered by adversary-driven threat intelligence and telemetry from the Falcon platform.
“Today’s insider risks, whether caused by an accident, negligence, or a sophisticated adversary, demand proactive and comprehensive protection to safeguard critical assets and minimize any potential impact,” said Thomas Etheridge, chief global services officer, CrowdStrike. “With deep adversary insights, extensive experience in countering complex threats and industry-leading visibility and protection provided by the Falcon platform, CrowdStrike Insider Risk Services sets a new standard for combating the modern insider threat.”
To learn more about CrowdStrike Insider Risk Services, please visit our blog and website.
About CrowdStrike
CrowdStrike (NASDAQ: CRWD), a global cybersecurity leader, has redefined modern security with the world’s most advanced cloud-native platform for protecting critical areas of enterprise risk – endpoints and cloud workloads, identity and data.
Powered by the CrowdStrike Security Cloud and world-class AI, the CrowdStrike Falcon® platform leverages real-time indicators of attack, threat intelligence, evolving adversary tradecraft and enriched telemetry from across the enterprise to deliver hyper-accurate detections, automated protection and remediation, elite threat hunting and prioritized observability of vulnerabilities.
Purpose-built in the cloud with a single lightweight-agent architecture, the Falcon platform delivers rapid and scalable deployment, superior protection and performance, reduced complexity and immediate time-to-value.
CrowdStrike: We stop breaches.
Learn more: https://www.crowdstrike.com/
Follow us: Blog | Twitter | LinkedIn | Facebook | Instagram
Start a free trial today: https://www.crowdstrike.com/free-trial-guide/
© 2025 CrowdStrike, Inc. All rights reserved. CrowdStrike and CrowdStrike Falcon are marks owned by CrowdStrike, Inc. and are registered in
View source version on businesswire.com: https://www.businesswire.com/news/home/20250115118825/en/
Media Contact
Jake Schuster
CrowdStrike Corporate Communications
press@crowdstrike.com
Source: CrowdStrike, Inc.
FAQ
What is CrowdStrike's new Insider Risk Services offering and when was it launched?
How much do insider threats cost companies according to CRWD's announcement?
What key services are included in CRWD's new Insider Risk Services?
What major threat did CRWD's intelligence uncover related to insider risks?
