"EDR AI Runtime Protection provides real-time insight into the behavior of AI applications on the endpoint. In the event of suspicious activity, security teams can trace the activity back to the source process and intervene immediately, including isolating the endpoint."
"Shadow AI Discovery automatically detects AI applications, LLM runtimes, MCP servers, and development tools, and links them to privilege exposure and risk priorities."
"AIDR for Endpoint extends prompt inspection to desktop applications such as ChatGPT, Gemini, Claude, DeepSeek, Microsoft Copilot, GitHub Copilot, and Cursor. It detects injection attacks, data leaks, and policy violations in real time."
"AI agents also operate in SaaS platforms, cloud workloads, and browsers, often with privileges not designed for machine-speed governance. To address this, CrowdStrike is adding Shadow SaaS Discovery for Microsoft Copilot, Salesforce Agentforce, and ChatGPT Enterprise."
CrowdStrike introduces new features for the Falcon platform, focusing on AI security at endpoints. New capabilities include EDR AI Runtime Protection, Shadow AI Discovery, and AIDR for Endpoint. These tools provide real-time insights into AI application behavior, detect AI applications and their risks, and extend prompt inspection to various desktop applications. The company addresses the challenges posed by AI agents operating in SaaS, cloud, and browser environments, implementing Shadow SaaS Discovery for major platforms to enhance security governance.
Read at Techzine Global
Unable to calculate read time
Collection
[
|
...
]