CrowdStrike Holdings Inc. today deepened its strategy of blending automation with intelligence with the launch of two new products at its Fal.con 2025 conference: Falcon for IT Risk-based Patching and Threat AI.

The new offerings are designed to unify fragmented workflows and give enterprises a faster, more reliable defense against adversaries that are increasingly weaponizing artificial intelligence.

The first new offering, Falcon for IT Risk-based Patching, has been designed to take on one of the most persistent disconnects in enterprise security: the gap between identifying a vulnerability and fixing it.

The patching service seeks to address the issue whereby, traditionally, security teams find flaws while information technology teams are left to patch them using separate tools and workflows. CrowdStrike argues that the siloed approach creates blind spots, duplicate agents, added complexity and delays that attackers can exploit.

Falcon for IT Risk-based Patching integrates vulnerability management and patch deployment within the Falcon platform. By pairing Falcon Exposure Management — which highlights the most critical risks across endpoints, cloud workloads, IT/internet of things and networks — with AI-powered patching, enterprises can prioritize threats by real-world exploitation likelihood and remediate safely at large scale.

Features of the new service include Patch Safety Scores and Falcon’s sensor intelligence that are designed to ensure that critical systems are updated without causing downtime, consolidating security and IT into a single workflow.

CrowdStrike calls the second release today, Threat AI, the industry’s first agentic threat intelligence system built to automate complex analysis and speed up response. Threat AI delivers agents that can proactively hunt adversaries, classify malware and generate intelligence at machine speed.

The offering comes with two agents — a Malware Analysis Agent that automates reverse engineering, classification, attribution and YARA rule creation, and the Hunt Agent, which continuously scans environments for signs of intrusion.

The agents are complemented with a Threat Intelligence Browser Extension that embeds CrowdStrike intelligence directly into analyst workflows for faster, more informed research.

Threat AI, embedded in the Threat Intelligence and Hunting module and informed by CrowdStrike’s Counter Adversary Operations, automates complex workflows while surfacing actionable recommendations.

The new products are embedded in the company’s larger Agentic Security Workforce vision, which brings AI-driven agents into frontline defense while keeping human judgment in control.

The announcements today follow CrowdStrike announcing yesterday new products that address the growing need for enhanced security in the age of artificial intelligence: the Agentic Security Platform and the Agentic Security Workforce.

CrowdStrike also revealed that it entered an agreement to acquire AI security company Pangea Inc. Though the price of the acquisition was not disclosed, reports suggest that it was about $260 million.

Image: CrowdStrike