CrowdStrike Adds Strategic Partners to CrowdXDR Alliance and Expands Falcon XDR Capabilities
New CrowdXDR Alliance partners include Menlo Security, Ping Identity, and Vectra AI.
XDR combines security data from endpoints, networks, email, and cloud systems to help detect and investigate attacks across an organization.
Search across headline titles and summaries.
Background for this topic.
Extended detection and response (XDR) combines security telemetry from domains such as endpoints, identity systems, email, networks, servers, and cloud workloads. It correlates related events into potential attack activity, helping analysts investigate a sequence of actions rather than isolated alerts. XDR platforms may also trigger responses such as isolating a host, disabling an account, or blocking a message, subject to configured policies and approvals.
XDR’s effectiveness depends on the quality and coverage of its integrations: missing telemetry, incompatible data, or poorly tuned detections can leave attack paths hidden or create excessive false positives. Automated response requires careful testing because an incorrect action can interrupt legitimate operations, while compromised XDR administration could provide broad control over connected systems. Centralized collection may also expose sensitive endpoint, identity, or communications data, so access controls, retention, and privacy requirements need review. Practitioners should assess telemetry coverage, detection logic, audit trails, and response playbooks rather than treating product integration alone as evidence of protection.
New CrowdXDR Alliance partners include Menlo Security, Ping Identity, and Vectra AI.
Randori’s attack surface management software to be integrated into IBM Security QRadar extended detection and response (XDR) features.