CrowdStrike > 实例探究 > Global Oil and Gas Company Enhances Endpoint Security with Falcon Host Deployment

Global Oil and Gas Company Enhances Endpoint Security with Falcon Host Deployment

公司规模

Large Corporate

国家

Worldwide

产品

Falcon Host
Falcon Overwatch
Falcon DNS
Falcon Intelligence - Premium

技术栈

Endpoint Security
Threat Intelligence
Real-time Alerting

实施规模

Enterprise-wide Deployment

影响指标

Customer Satisfaction
Innovation Output
Productivity Improvements

技术

网络安全和隐私 - 端点安全

适用行业

石油和天然气

适用功能

商业运营

用例

网络安全
入侵检测系统
远程资产管理

服务

网络安全服务
系统集成

关于客户

The customer is a leading global oil and gas company. They operate a full stack of security products, but they wanted to have more robust endpoint protection. They also needed much better visibility into and prevention against sophisticated attacks across the full spectrum of the kill chain. Specifically, they wanted alerting on new unknown hashes propagating throughout their environment. As a result, the company turned to Falcon Host to provide the extensive prevention, detection and visibility they needed, especially for sophisticated unknown attacks.

登录后查看完整内容

挑战

The customer lacked unhindered visibility into attacker activity on their endpoints. They needed the ability to see both signature- and non-signature-based attacks in real time, and the ability to contain those attacks. The customer also needed real-time alerting whenever new 'unknown unknowns' were executing or propagating across their environment. Furthermore, they wanted the ability to prevent these events in real time. They had a well defined and resourced security operation that wanted to alleviate 'alert fatigue' and focus on the most urgent threats targeting their environment. In addition, they wanted to augment those resources with proactive threat hunting to detect possible threats at an earlier stage and prevent attacks from succeeding. Given the size and complexity of their global operations, the customer needed the ability to fine-tune and completely control prevention settings and capabilities on their endpoints.

登录后查看完整内容

解决方案

The customer looked at a variety of endpoint solutions, but only Falcon Host was able to provide real-time answers to the question, 'What is running in my environment that is unknown?' Falcon Host was able to provide the customer with real-time alerts indicating when unknown threats were executing in or propagating across the enterprise, allowing the customer to prevent these unidentified threats from executing and compromising the environment. The ability to deploy quickly with no endpoint impact, no on-premise infrastructure and with full visibility across on- and off-network machines were all major factors in the customer’s decision. Detecting adversary behaviors across the attack timeline also set Falcon apart from competing endpoint solutions. Finally, to further augment their own internal security resources, they took advantage of the 24/7 proactive threat 'hunting' capabilities provided by the Falcon Overwatch team.

登录后查看完整内容

运营影响

CrowdStrike worked with the customer to ensure that they were alerted whenever new unknown hashes began to propagate in their environment.
The solution provided the ability to escalate alerts based on the rate of propagation.
The customer was able to focus on the most urgent threats, reducing alert fatigue.
The proactive threat hunting capabilities allowed for earlier detection of potential threats.
The deployment was quick and did not disrupt existing operations, providing full visibility across the network.

登录后查看完整内容

数量效益