Using Artificial Intelligence and Machine Learning to Combat Hands-on-Keyboard Cybersecurity Attacks

CrowdStrike continues to strengthen its position in the cybersecurity landscape by being recognized as a leader in several 2025 IDC MarketScape evaluations, including Worldwide Incident Response Services and Exposure Management. The company is making strategic moves such as acquiring Onum to enhance how data powers the Agentic Security Operations Center (SOC) and has been active in addressing emerging threats like the "MURKY PANDA" cloud threat. Leveraging AI and machine learning, CrowdStrike's Falcon platform is designed to combat both traditional malware and more sophisticated hands-on-keyboard attacks, which often utilize legitimate tools to evade detection by legacy security solutions. The platform's AI-powered indicators of attack (IOAs) are crucial in detecting real-time adversarial patterns, as demonstrated by its success in the MITRE Engenuity ATT&CK Enterprise Evaluation. While AI and ML are transforming cybersecurity by enhancing detection and prevention capabilities, the importance of human expertise remains integral to effectively responding to threats.