When George Kurtz announced the founding of his new company CrowdStrike in 2012, On his blogOnly a few people outside the tech industry will notice.
Kurtz, along with Dmitry Alperovich (CTO) and Greg Marston (CFO) He wants to change the way the cybersecurity industry responded to hacking and cyber breaches.
He wanted to assemble a “dream team” of tech experts. A group of rebels, he called them, who believed “the current state of security is fundamentally broken and wanted to do something about it.”
After more than a decade, the company has been very successful in achieving this goal.
But the company’s name didn’t become public knowledge until last Friday, and for all the wrong reasons. The world was reeling from what was being described as the biggest IT failure in history, and CrowdStrike was at the heart of it.
The company’s incredible success is one of the reasons behind the global IT outage that has swept the world over the past 48 hours, causing a wave of disruptions to vital services.
How CrowdStrike Went From Startup to Global Player
Kurtz was a former McAfee engineer for many years, but he became disillusioned with the approach to cybersecurity across the industry.
In a blog post, Kurtz wrote that he was “tired of the status quo of technologies that were unable to handle the most pressing attacks.
“I’m tired of malware-focused approaches that only address 40% of the problem. I’m tired of siloed, overly complex, easily hackable on-premises security technologies that cost a lot of money to manage.”
The idea behind CrowdStrike was different. He and his co-founders set out to develop a new approach to what’s known as cloud-based endpoint security. The company’s motto was simple: “We stop breaches.”
To that end, CrowdStrike built a new kind of cybersecurity service that goes deep into the systems of companies and the services they rely on. The idea was to provide a broader base of protection.
There was some skepticism within the industry, Kurtz said, but their approach worked. Their signature product, the Falcon Platform, was designed to be a one-stop shop for security needs to detect malware and stop cyberattacks.
There was strong interest in this new approach from private equity groups. It was initially backed by private investors such as Accel and Warburg Pincus. In 2014, it received significant backing from Google Capital, raising over $100 million.
In 2015, Marston announced his retirement and left the company as CFO. Kurtz and Alperovitch continued the business, rapidly expanding and increasing their client base worldwide.
The company has launched subsidiaries in Australia, the United Kingdom, India, Germany and Canada.
In 2019, CrowdStrike became a publicly traded company in the United States. Since then, it has received support from major institutional investors.
Vanguard is currently the largest shareholder, followed by Blackrock, Jennison Associates, State Street Global Advisors, Invesco Capital Management, and Geode Capital Management.
Kurtz also continues to own shares in the company.
In 2020, co-founder alperovitch Leaving work to start a non-profit.
The company has successfully undercut its competitors — including Microsoft — by launching powerful products. Formulations He is highly critical of the company’s security failures, including: “Microsoft’s security products can’t even protect Microsoft.”
Since CrowdStrike’s launch, the endpoint security market has seen rapid growth and is now worth at least $8 billion.
Today, CrowdStrike dominates the market. Market Share Report 2022 It noted that it captured more than 17 percent — closely followed by Microsoft’s Azure, a major competitor.
This means that over the past decade, entire systems of banking, telecommunications, healthcare, education, and other critical services have come to rely on CrowdStrike security — which goes deep into their systems to protect them.
CrowdStrike is also present throughout Australia. It provides services to a number of airlines, transportation services and other companies affected by Friday’s software glitch.
It also provides its services to government agencies. The Falcon Intelligence System is used by agencies including the Australian Signals Directorate, According to To a 2019 contract worth $624,000.
The company was awarded a $954,323 limited bid contract from the Department of Defense for software services in 2019, and also maintains software contracts with other government agencies.
CrowdStrike, Donald Trump, and Conspiracy Theory
Oddly enough, this is not the first time the company has found itself at the centre of global controversy.
In 2016, CrowdStrike was Contacted For its part, the US Democratic Party has taken action in response to a major cybersecurity breach of its email systems.
The breach led to WikiLeaks publishing millions of emails in a highly damaging and chaotic public release.
CrowdStrike was hired by the party in response to the hack, and eventually concluded in May 2016 that two separate Russian government entities were behind the hack.
These findings have given credence to the views of US intelligence agencies regarding foreign interference by Russia aimed at harming Hillary Clinton’s electoral chances in favor of Donald Trump.
CrowdStrike was forced to defend itself after coming under fire for these findings, and a bizarre series of conspiracy theories emerged about the company for not turning over the Democratic Party “server” to the FBI.
The core of these debunked claims was an attempt to disprove findings of Russian interference by U.S. government agencies, including the FBI, and that CrowdStrike was somehow complicit in that goal.
Part of this false theory included the claim that Ukraine, not Russia, was somehow linked to the attack.
At a hearing, then-FBI Director James Comey testified that there was a “suitable replacement” for the server. Special Counsel Robert Mueller cited extensive evidence in his report on the FBI and CrowdStrike’s analysis.
But these theories continued to circulate.
In 2019, Trump mentioned CrowdStrike in a leaked transcript of a call with Volodymyr Zelensky that appeared to support a conspiracy theory that there was some kind of server failure.
“I would like you to do us a favor, because our country has been through a lot and Ukraine knows a lot about that,” Trump told Zelensky, according to a transcript of the call. Published by The Washington Post.
“I would like to know what happened in this whole situation with Ukraine. They say CrowdStrike… I think you have some rich guy… the server, they say Ukraine owns it.”
CrowdStrike apologizes for impact
Many in the cybersecurity industry believe the company has done an important job in keeping the world’s IT systems secure.
“Today, CrowdStrike is a household name, but not in a good way. It will take some time to settle, but that does not change our positive long-term view on CrowdStrike or the cybersecurity sector,” US-based financial and security analysts at Wedbush said in a report released on Friday.
But their incredible success, and the reliance of so many organizations on them, now raises some obvious questions about CrowdStrike’s dominance.
Like all cybersecurity services, it needs to be updated. Hackers are constantly looking for vulnerabilities in systems that need to be patched.
It’s one of the updates the company says is responsible for the crash.
Kurtz released a statement explaining that the issue was caused by a nightly update for Windows users of its Falcon sensor product.
“I want to extend my sincere and direct apologies to all of you for the outage today,” his statement read.
“We quickly identified the issue and deployed a fix, allowing us to focus diligently on restoring customer systems as our top priority.”
CrowdStrike’s stock price fell more than 11 percent after the incident.
For many people in Australia and around the world who have missed a flight or train or been unable to pay for their purchases due to a power outage, the name CrowdStrike will be on their minds for some time to come.
Some IT experts are already wondering whether the huge share of the endpoint security market itself is a serious hole in the Internet’s infrastructure.
The Wedbush report predicted that the outage “may create an opportunity for some competitive displacement, but that it will take some time to determine the path forward for CIOs and companies looking to the future and the legal actions related to this outage.”
The question analysts are still trying to answer is: How and why could a simple update lead to such a catastrophic chain of events around the world?
It was published. , Updated