Cybersecurity provider CrowdStrike made a series of announcements at its Fal.Con 2025 conference, held in Las Vegas from September 15-18.
These announcements include CrowdStrike’s acquisition of Pangea, integrations with Dispersive and Versa, and an expanded partnership with ExtraHop.
Pangea-CrowdStrike: Pioneering AI security
At Fal.Con 2025, CrowdStrike CEO George Kurtz announced an agreement to acquire Pangea, a startup specializing in providing guardrails for generative AI–powered applications, in a deal valued at around $260 million.
Following the acquisition, Pangea’s technology will be integrated into the CrowdStrike Falcon platform, powering a new capability the company calls AI Detection and Response (AIDR).
AIDR is designed to provide organizations with visibility and control over AI agents and their workflows, unifying detection, response, and compliance across the entire AI lifecycle. Kurtz said the move is intended to establish a new standard for AI security, just as CrowdStrike did with endpoint detection and response (EDR).
“AI is rewriting the enterprise attack surface at breakneck speed. Each prompt becomes an entry point for the adversary,” he said.
“With Pangea, CrowdStrike will secure the entire AI lifecycle, detecting risks, enforcing safeguards, and ensuring compliance, so our customers can confidently build, deploy, and scale AI without risk,” Kurtz added.
Dispersive: Endpoint and identity protection into the network layer
Stealth networking provider Dispersive Holdings, known for secure and resilient communications, announced a new integration with CrowdStrike’s AI-native Falcon platform during Fal.Con 2025. The partnership introduces a joint solution that unifies endpoint, identity, and network context.
The Dispersive Continuous Trust Authorization Network extends CrowdStrike’s endpoint and identity protection into the network layer. By continuously monitoring CrowdStrike device and user identity scores via API, Dispersive dynamically adjusts access rights and can instantly isolate risky users or devices when elevated risk is detected.
Among the benefits of the integration are:
- Predictive patient zero isolation: Proactive containment of potential threats by combining endpoint, identity, and network context
- On-demand endpoint isolation: Instantly segment or disconnect risky users/devices
- Dynamic authorization: Adjust access rights in real-time based on risk posture
- Granular policy enforcement: Apply on attribute- and score-based controls for sensitive networks, applications, and services
New American Funding, a top mortgage lender in the US, is piloting the joint solution to help safeguard its customers, employees, and other stakeholders via identity-based segmentation and automatic behavioral access controls.
“The Dispersive – CrowdStrike integration enables organizations to deploy adaptive, identity-aware networking for preemptive cyber defense,” said Rajiv Pimplaskar, chief executive officer at Dispersive Holdings, Inc.
“NAF’s leadership demonstrates how organizations can turn the trifecta of device, identity, and network into a significant business differentiator,” he added.
Jeff Farinich, senior vice president of technology and chief information security officer of NAF, also underscored the benefits of the partnership.
“With Dispersive and CrowdStrike deployed together, we gain the ability to see and act on user and device risk in real time. We can now provide risk-based access to network resources based on zero trust principles. It’s a powerful competitive advantage for us in both security and trust,” he said.
CrowdStrike also announced a new phase in its partnership with network detection and response provider ExtraHop, aimed at unifying data and delivering faster investigations for security operations teams (SOC) with federated search.
Building on ExtraHop’s recent integrations with Falcon Next-Gen SIEM, the companies are developing capabilities that will provide analysts deeper visibility, faster access to evidence, and simpler workflows—without added complexity or data duplication.
The integration will allow ExtraHop RevealXTM Premium Investigation users to access ExtraHop data directly within the Falcon platform, unifying visibility and accelerating investigations.
“Together with CrowdStrike, we’re working toward a simpler, more unified SOC experience – one that gives analysts the clarity they need to stay ahead of threats and respond with confidence,” said Kanaiya Vasani, chief product officer at ExtraHop.
Versa: Enhanced Zero Trust Access and strengthened SIEM
Versa, a leader in Universal Secure Access Service Edge (SASE), announced two new integrations with the CrowdStrike Falcon platform: strengthened Zero Trust Access and unified endpoint and network visibility for the SOC.
According to Versa, the integrations are designed to break down siloed endpoint and network data, providing analysts with much-needed visibility and network telemetry to foster faster response to security incidents.
- First integration: Incorporates dynamic CrowdStrike Zero Trust Assessment (ZTA) scores into Versa’s risk evaluations across Versa’s SASE, SSE, SD-WAN, and SD-LAN offerings. By leveraging real-time risk exposure data from the Falcon platform, Versa can dynamically adjust user and device risk profiles to strengthen security postures and reduce manual intervention.
- Second integration: Brings Versa’s network telemetry from the WAN edge, cloud, remote locations, users, and devices into Falcon Next-Gen SIEM. This enables SOC teams to leverage more than 50 types of logs and correlate endpoint and network data in a single platform, facilitating faster investigations and enhanced compliance.
“Both of these integrations address an ongoing security pain point – siloed data that limits visibility into real risk,” said Anusha Vaidyanathan, senior director of product management at Versa.
“Combining endpoint and network data where it’s most impactful and at the moment it matters leads to better decisions and better security. That’s why our collaboration with CrowdStrike is so important.”
Post-Fal.Con development: KPMG partnership
Just days after Fal.Con 2025, CrowdStrike announced that KPMG is expanding its cybersecurity services with the Falcon platform, integrating Falcon Next-Gen SIEM into its offerings and adopting CrowdStrike’s Engagement Licensing Program (ELP).
In an official press release, KPMG said the collaboration will strengthen its ability to support clients in modernizing security operations while simultaneously enhancing automation through an AI-powered SOC.
“We’re thrilled to work with CrowdStrike, combining their cutting-edge cybersecurity technology with our advisory expertise to deliver proactive security solutions for clients,” said Jason Haward-Grau, principal cybersecurity at KPMG LLP.
“This alliance empowers organizations to elevate protection and streamline operations through advanced AI and automation, simplifying the journey through today’s complex cyber threat landscape,” he added.
