CrowdStrike Explained: The Cybersecurity Company Behind Russia’s Election Meddling Charges

Imagine a small, privately-held cybersecurity company that takes on the likes of nation-state hackers, including those accused of meddling in U.S. elections. That company is CrowdStrike, and in this article, we’ll delve into what makes them tick.

What is CrowdStrike?

CrowdStrike is a cybersecurity technology company founded in 2011 by former CIA officer and cybersecurity expert George Kurtz. The company’s name derives from the concept of crowdsourcing, where multiple individuals or entities (the “crowd”) contribute their expertise and resources to address a particular challenge.

What does CrowdStrike do?

CrowdStrike offers a suite of cybersecurity solutions that help organizations detect, prevent, and respond to advanced threats. Their flagship product is called Falcon, a cloud-based anti-virus and threat prevention platform that leverages machine learning, artificial intelligence, and human expertise to identify and stop malicious activity.

The Russia Investigation

In 2016, CrowdStrike was contracted by the Democratic National Committee (DNC) to investigate a series of cyberattacks attributed to Russian hackers. The attacks, which were widely reported in the media, resulted in the release of sensitive information, including emails and financial records.

FISA Order

In October 2016, the FBI issued a Foreign Intelligence Surveillance Act (FISA) order, which authorized CrowdStrike to access and analyze the DNC’s computer systems. This order was the subject of intense controversy, with some arguing that it was improperly issued and that the company’s findings were not adequately vetted.

Analysis and Recommendations

CrowdStrike’s investigation concluded that the DNC hacks were carried out by two separate Russian agencies: GRU (Main Intelligence Directorate) and FSB (Federal Security Service). The company provided detailed analysis and recommendations to the FBI and other stakeholders, including:

1. The hackers used custom-made malware to access the DNC’s systems.
2. The attacks were likely ordered by senior Russian officials.
3. Political themes were used as a smoke screen to conceal the true objectives of the attacks.
4. The attackers stole sensitive information, which was later released to the public through various channels.

Reactions and Controversy

CrowdStrike’s findings sparked widespread controversy, with some questioning the company’s methods, motives, and conclusions. Critics argued that:

1. The company was biased and overly antagonistic towards Russia.
2. The FISA order was improperly issued and that CrowdStrike’s findings were not adequately vetted.
3. The company’s analysis was based on incomplete or unreliable data.

Conclusion

CrowdStrike is a respected cybersecurity company that has gained international attention for its work on the Russia investigation. Their expertise and findings have had significant implications for U.S. politics and international relations. While some have criticized the company’s methods and motives, the majority of the cybersecurity community has praised their rigorous analysis and recommendations.

As the cybersecurity landscape continues to evolve, companies like CrowdStrike will play a crucial role in protecting organizations and individuals from the threats of nation-state hackers and other malicious actors.