Intelligence notes

Dashboard

CrowdStrike

2 min read

CrowdStrike

BLUF

CrowdStrike Holdings Inc. is a US cybersecurity company (NASDAQ: CRWD; Sunnyvale, California) and one of the world’s largest endpoint detection and response (EDR) and threat intelligence providers. Its Falcon platform protects an estimated 60% of Fortune 500 companies and provides managed detection and response (MDR) services across government and private sector clients globally. CrowdStrike is one of the named participants in Anthropic’s Project Glasswing consortium, which provides access to the Claude Mythos frontier model for defensive cybersecurity vulnerability research.

Key Facts

  • Founded: 2011; CEO George Kurtz (co-founder)
  • Revenue: ~$3.8B (FY2024); ~$10B ARR target by FY2026
  • Employees: ~10,000+
  • Products: Falcon EDR/XDR platform; Threat Graph (AI-native threat detection); Falcon Intelligence (nation-state threat tracking); Falcon Adversary Intelligence
  • Notable clients: US federal government (CISA, FBI); major financial institutions; NATO allies
  • Threat intelligence role: CrowdStrike Intelligence unit tracks and names APT groups (APT28 = FANCY BEAR, APT29 = COZY BEAR, etc.) — its naming taxonomy is the de facto industry standard for state-sponsored threat actors
  • 2024 Falcon sensor incident: A faulty Falcon content update (July 19, 2024) caused ~8.5 million Windows systems to BSOD globally, disrupting airlines, hospitals, and financial institutions — the largest IT outage in history to that date; resolved within hours but highlighted single-point-of-failure risks in EDR monoculture

Project Glasswing Participation

CrowdStrike is one of approximately 50 named participants in Anthropic’s Project Glasswing private consortium, which provides access to the Claude Mythos frontier model. As a cybersecurity company, CrowdStrike’s Glasswing access is analytically the most sensitive: Mythos-assisted vulnerability discovery by a commercial EDR provider could generate findings that are (a) disclosed responsibly, (b) incorporated into CrowdStrike Falcon detections, or (c) treated as proprietary competitive intelligence. The governance framework governing CrowdStrike’s use of Mythos outputs has not been publicly disclosed.

Key Connections

  • Claude Mythos — Glasswing consortium participant; Mythos access for vulnerability research
  • Anthropic — Project Glasswing operator
  • Dual-Use Technology — CrowdStrike exemplifies dual-use cyber capability: offensive research tools embedded in defensive product suites

Sources

  • CrowdStrike Annual Report FY2024 — [High confidence — primary]
  • Bloomberg, 2026-04-30: Project Glasswing reporting naming CrowdStrike — [Medium-high confidence]
  • CISA: CrowdStrike partnership agreements (public) — [High confidence]

Graph View

Backlinks